Secunia Logo  
 Vulnerability IntelligenceVulnerability ScanningCommunityBlogCorporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Fedora update for fetchmail
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Fedora update for fetchmail
Secunia Advisory: SA23804
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2007-01-17
Popularity: 5,663 views

Critical:
Less critical
Impact: Exposure of sensitive information
DoS
Where: From local network
Solution Status: Vendor Patch

OS:Fedora Core 5
Fedora Core 6
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2006-5867
CVE-2006-5974
Description:
Fedora has issued an update for fetchmail. This fixes a vulnerability and a security issue, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and malicious people to gain knowledge of sensitive information.

For more information:
SA23631

Solution:
Apply updated packages.

-- Fedora Core 5 --

e9c1703b881155f799d839797cb55d7322680772 SRPMS/fetchmail-6.3.6-1.fc5.src.rpm
e9c1703b881155f799d839797cb55d7322680772 noarch/fetchmail-6.3.6-1.fc5.src.rpm
0282df3a830034ba9db6d33bf89472d3670c4b26 ppc/fetchmail-6.3.6-1.fc5.ppc.rpm
29e788a6de9e0c86563d0293f379d36ffba52660 ppc/debug/fetchmail-debuginfo-6.3.6-1.fc5.ppc.rpm
39947bd8fcff2f4d8ecb74926d30cc99afa897bf x86_64/debug/fetchmail-debuginfo-6.3.6-1.fc5.x86_64.rpm
571c75f756a82bc201c63098492c53c81f6f9226 x86_64/fetchmail-6.3.6-1.fc5.x86_64.rpm
b5f04d034eaf6c0940f1414820aa1f14beb199f8 i386/debug/fetchmail-debuginfo-6.3.6-1.fc5.i386.rpm
d2b9dc51f18095720ff007c8bd24a4c8988eebf6 i386/fetchmail-6.3.6-1.fc5.i386.rpm

-- Fedora Core 6 --

d5d7bebc3476a174ae1b3a36e31b2e84a25efa19 SRPMS/fetchmail-6.3.6-1.fc6.src.rpm
d5d7bebc3476a174ae1b3a36e31b2e84a25efa19 noarch/fetchmail-6.3.6-1.fc6.src.rpm
36fd1993cb074e0060d94df48bd9b8a7c9af9b6a ppc/fetchmail-6.3.6-1.fc6.ppc.rpm
aa879045f673cbfabeb3273893d1d0fa557e0b99 ppc/debug/fetchmail-debuginfo-6.3.6-1.fc6.ppc.rpm
074dcbf06be93dd95f82a35b5a16fcf8ac0c1967 x86_64/debug/fetchmail-debuginfo-6.3.6-1.fc6.x86_64.rpm
455a9ca94841446549fb88c3ada38c3b0da998df x86_64/fetchmail-6.3.6-1.fc6.x86_64.rpm
bddfc25846957e5c4448e3fec2be8920a2965baf i386/debug/fetchmail-debuginfo-6.3.6-1.fc6.i386.rpm
4482d10b2c4904bbeac01c12601e7e265681375c i386/fetchmail-6.3.6-1.fc6.i386.rpm

Original Advisory:
http://fedoranews.org/cms/node/2429
http://fedoranews.org/cms/node/2430

Other References:
SA23631:
http://secunia.com/advisories/23631/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

Today
New advisories: 5
New vulnerabilities: 17
Updated advisories: 8

Highly // 15 views
XOOPS "mydirname" PHP Code Injection Vulnerability
Less // 117 views
Red Hat update for kernel
Less // 114 views
Ubuntu update for bind9
Less // 101 views
Ubuntu update for ntp
Less // 111 views
Red Hat update for bind

8th Jan, 2009
New advisories: 24
New vulnerabilities: 99
Updated advisories: 26

Moderately // 380 views
Drupal Project Module File Upload and Cross-Site Scripting
Less // 376 views
SmbFTPD Long Command Processing Vulnerability
Less // 408 views
Drupal Project Issue Tracking Module Multiple Vulnerabilities
Less // 366 views
PHP-Fusion Members CV Module "sortby" SQL Injection Vulnerability
Moderately // 410 views
Lasso OpenSSL "DSA_verify()" Spoofing Vulnerability

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Red Hat update for kernel // 105 views
2. Ubuntu update for bind9 // 104 views
3. Red Hat update for bind // 102 views
4. Ubuntu update for ntp // 92 views
5. SAP GUI TabOne ActiveX Control Caption List Buffer Overflow // 49 views
6. ISC BIND "EVP_VerifyFinal()" and "DSA_do_verify()" Spoofing Vulnerability // 37 views
7. Sun Java JDK / JRE Multiple Vulnerabilities // 35 views
8. NTP OpenSSL "EVP_VerifyFinal()" Spoofing Vulnerability // 32 views
9. Cisco Global Site Selector DNS Request Denial of Service // 32 views
10. Soholaunch Pro "_SESSION[docroot_path]" File Inclusion // 28 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2009