From e76ae1ef1afb66f8be3f30725ce42d53c096cf79 Mon Sep 17 00:00:00 2001 From: Matthias Andree Date: Sun, 29 Jul 2007 09:48:20 +0000 Subject: Add fetchmail-SA-2007-02.txt and promote Earl Chew's bug fix to security. svn path=/branches/BRANCH_6-3/; revision=5120 --- NEWS | 16 ++++++++++------ 1 file changed, 10 insertions(+), 6 deletions(-) (limited to 'NEWS') diff --git a/NEWS b/NEWS index 0c0d831f..d8e26998 100644 --- a/NEWS +++ b/NEWS @@ -44,13 +44,16 @@ be removed from a 6.4.0 or newer release.) fetchmail 6.3.9 (not yet released): -# CRITICAL BUG FIX: -* When fetchmail tries to inject a warning message it created itself, and the - message is refused by the SMTP listener, fetchmail dereferences a NULL - pointer and crashes. Report and fix by Earl Chew. +# SECURITY FIX: +* CVE-2007-XXXX: Denial of service: When fetchmail tries to inject a warning + message it created itself, and the message is refused by the SMTP listener, + fetchmail dereferences a NULL pointer and crashes. Report & fix by Earl Chew. + Note while this is theoretically a remote denial of service attack vector, + fetchmail by default talks SMTP to the localhost, so the overall risk is + rather low. This bug was apparently introduced on 1998-11-27 when the bouncemail facility - was modularized by ESR. The bug made then its appearance in fetchmail release - 4.6.8. + was modularized. The bug made then its appearance in fetchmail release 4.6.8. + See fetchmail-SA-2007-02.txt. # BUG FIXES: * The configure script will additionally check for 'dn_skipname', to fix build @@ -65,6 +68,7 @@ fetchmail 6.3.9 (not yet released): Thanks to Matthias Strauß for a configuration to reproduce the issue. # DOCUMENTATION: +* Add fetchmail-SA-2007-02.txt * Re-add two lines to the manual page that had accidentally become comments to nroff. One was part of the --sslproto documentation, and one in the "Awakening the background daemon" section. -- cgit v1.2.3