Download
| Alert*
oval:org.secpod.oval:def:1600932
A heap-based buffer overflow flaw was found in procmail's formail utility. A remote attacker could send a specially crafted email that, when processed by formail, could cause formail to crash or, possibly, execute arbitrary code as the user running formail. oval:org.secpod.oval:def:2103114 Heap-based buffer overflow in the loadbuf function in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted e-mail message because of a hardcoded realloc size, a different vulnerability than CVE ... oval:org.secpod.oval:def:89002346 This update for procmail fixes the following issues: - CVE-2017-16844: Heap-based buffer overflow in loadbuf function could lead to remote denial of service oval:org.secpod.oval:def:89044623 This update for procmail fixes the following issues: Security issue fixed: - CVE-2017-16844: Heap-based buffer overflow in the loadbuf function in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted e-mail messa ... oval:org.secpod.oval:def:204709 The procmail packages contain a mail processing tool that can be used to create mail servers, mailing lists, sort incoming mail into separate folders or files, preprocess mail, start any program upon mail arrival, or automatically forward selected incoming mail. Security Fix: * A heap-based buffer o ... oval:org.secpod.oval:def:53190 Jakub Wilk reported a heap-based buffer overflow vulnerability in procmail"s formail utility when processing specially-crafted email headers. A remote attacker could use this flaw to cause formail to crash, resulting in a denial of service or data loss. oval:org.secpod.oval:def:502198 The procmail packages contain a mail processing tool that can be used to create mail servers, mailing lists, sort incoming mail into separate folders or files, preprocess mail, start any program upon mail arrival, or automatically forward selected incoming mail. Security Fix: * A heap-based buffer o ... oval:org.secpod.oval:def:603179 Jakub Wilk reported a heap-based buffer overflow vulnerability in procmail"s formail utility when processing specially-crafted email headers. A remote attacker could use this flaw to cause formail to crash, resulting in a denial of service or data loss. oval:org.secpod.oval:def:1502069 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:51936 procmail: Versatile e-mail processor formail could be made to crash or run programs if it processed specially crafted mail. oval:org.secpod.oval:def:703889 procmail: Versatile e-mail processor formail could be made to crash or run programs if it processed specially crafted mail. |