Boletines de Vulnerabilidades

DSA-4041 procmail - security update


Información sobre el sistema

   
Software afectado Debian

Descripción

Jakub Wilk reported a heap-based buffer overflow vulnerability inprocmails formail utility when processing specially-crafted emailheaders. A remote attacker could use this flaw to cause formail tocrash, resulting in a denial of service or data loss.

More info:

https://www.debian.org/security/2017/dsa-4041

Identificadores estándar

Propiedad Valor
CVE CVE-2017-1684 and DSA-4041.

Histórico de versiones

Versión Comentario Data
1.0 Advisory issued 2017-11-20
Ministerio de Defensa
CNI
CCN
CCN-CERT