diff options
| author | Matthias Andree <matthias.andree@gmx.de> | 2011-05-31 22:39:36 +0200 |
|---|---|---|
| committer | Matthias Andree <matthias.andree@gmx.de> | 2011-05-31 22:40:05 +0200 |
| commit | e5a4131e735b5a59dbc3b4b8024e437bae84bc16 (patch) | |
| tree | 6dce0653e22d50bafd1867e8f377dda237fcdbb3 | |
| parent | 0cfc02717e320614332a7d7217e43cf83733b7a8 (diff) | |
| download | fetchmail-e5a4131e735b5a59dbc3b4b8024e437bae84bc16.tar.gz fetchmail-e5a4131e735b5a59dbc3b4b8024e437bae84bc16.tar.bz2 fetchmail-e5a4131e735b5a59dbc3b4b8024e437bae84bc16.zip | |
Add CVE name.
| -rw-r--r-- | NEWS | 3 | ||||
| -rw-r--r-- | fetchmail-SA-2011-01.txt | 2 |
2 files changed, 3 insertions, 2 deletions
@@ -59,7 +59,8 @@ removed from a 6.4.0 or newer release.) fetchmail-6.3.20 (not yet released): # SECURITY BUG FIXES -* Fetchmail runs the IMAP STARTTLS or POP3 STLS negotiation with the set timeout +* CVE-2011-1947: + Fetchmail runs the IMAP STARTTLS or POP3 STLS negotiation with the set timeout (default five minutes) now. This was reported missing, from fetchmail freezes beyond a week, by Thomas Jarosch. SSL-wrapped connections were unaffected by this timeout, so users of older diff --git a/fetchmail-SA-2011-01.txt b/fetchmail-SA-2011-01.txt index fc627f65..915b3524 100644 --- a/fetchmail-SA-2011-01.txt +++ b/fetchmail-SA-2011-01.txt @@ -9,7 +9,7 @@ Type: Unguarded blocking I/O can cause indefinite application hang Impact: Denial of service Danger: low -CVE Name: +CVE Name: CVE-2011-1947 CVSSv2: CVSS scores: This is calculated without Environmental Score. |