aboutsummaryrefslogtreecommitdiffstats
path: root/fetchmail-SA-2021-01.txt
diff options
context:
space:
mode:
authorMatthias Andree <matthias.andree@gmx.de>2021-07-28 22:58:52 +0200
committerMatthias Andree <matthias.andree@gmx.de>2021-07-28 23:02:05 +0200
commitba6837fcbbf44d4dd31693696710c49287619a76 (patch)
treed7ebe892a57c47377cf27e09c6382d041090cfff /fetchmail-SA-2021-01.txt
parent327b4270e7cd132f24ba1fabf35753d99eb5789b (diff)
downloadfetchmail-ba6837fcbbf44d4dd31693696710c49287619a76.tar.gz
fetchmail-ba6837fcbbf44d4dd31693696710c49287619a76.tar.bz2
fetchmail-ba6837fcbbf44d4dd31693696710c49287619a76.zip
update Git commit hash for CVE-2021-36386 correction
Diffstat (limited to 'fetchmail-SA-2021-01.txt')
-rw-r--r--fetchmail-SA-2021-01.txt31
1 files changed, 16 insertions, 15 deletions
diff --git a/fetchmail-SA-2021-01.txt b/fetchmail-SA-2021-01.txt
index b88bf2bd..5f2563be 100644
--- a/fetchmail-SA-2021-01.txt
+++ b/fetchmail-SA-2021-01.txt
@@ -6,7 +6,7 @@ fetchmail-SA-2021-01: DoS or information disclosure logging long messages
Topics: fetchmail denial of service or information disclosure when logging long messages
Author: Matthias Andree
-Version: 1.0
+Version: 1.1
Announced: 2021-07-28
Type: missing variable initialization can cause read from bad memory
locations
@@ -24,7 +24,7 @@ Affects: - fetchmail releases up to and including 6.4.19
Not affected: - fetchmail releases 6.4.20 and newer
-Corrected in: b381f5ea Git commit hash
+Corrected in: c546c829 Git commit hash
2021-07-28 fetchmail 6.4.20 release tarball
@@ -34,6 +34,7 @@ Corrected in: b381f5ea Git commit hash
2021-07-07 initial report to maintainer
2021-07-28 1.0 release
+2021-07-28 1.1 update Git commit hash with correction
1. Background
@@ -102,17 +103,17 @@ Use the information herein at your own risk.
END of fetchmail-SA-2021-01
-----BEGIN PGP SIGNATURE-----
-iQIzBAEBCgAdFiEE3EplW9mTzUhx+oIQ5BKxVu/zhVoFAmEBhy8ACgkQ5BKxVu/z
-hVpY+hAAq8EsnQUFVg4aoKfG1SkBCxlcXoQRwPRUFr/q1zQzPP07gTlY44S3LGSP
-VN9INQIvW8HPhB/84j91uhCqpBTPdLr5ikXXvYMvdG+Qz9wdStCV8+Z3Iq4DGh4w
-KRuZiXGuALQhSBGtOhoTmm6Dvjnjj5nnYhxvX2o5jMyQfB4BX59QSCbUO60b73Up
-b7S35Oh6ya+ccfTrJABuNCbv1665aP7r3Nyow/UqaXCexorXQz9O08EgzxNf6vRQ
-JwhfityzeNkgdCEwCSKXihg3+iCbpBJmpA2EIo+zEonw2GtqmNMvNcuEHUW5C2E4
-waY5uwsRkzP2asJrmYbaKd7B5e0WYvH8x3DBVfKRaovEU4JiZcs/DWMhSPJDzcR+
-K78BAFaExey54l892pAKS3dggNRXx9QEQ5LKU0wVkTxgedGsNWu+699ClT9ZuDGa
-hkaY1iJk/WKVfvzsM/hv+va4IXhZLeY/DDoh3vukbriVXx120phTPEvJdX1k4A7o
-tf5UgERjsOzEEHWgYkuip4UReg7KXvBvlSH49PvDcE9ypkhEGt3Jl1d1bTcSBvNe
-z+uNmMTcuKQV06GeqU63MdlE1kM+EckxyX8UktcFJ3w8/xXqWmECjtltCD6n/tTy
-Df1d3PTEEKdCMmwgQ9RCj+vOjJ4WAw47DPQZlfwjZb+5C6rGqQU=
-=ZG8w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+=1rxO
-----END PGP SIGNATURE-----