[Secure-testing-team] Bug#760443: procmail: CVE-2014-3618: Heap-overflow in formail when processing specially-crafted email headers
Salvatore Bonaccorso
carnil at debian.org
Thu Sep 4 06:40:23 UTC 2014
Source: procmail
Version: 3.22-19
Severity: grave
Tags: security patch upstream
Hi,
the following vulnerability was published for procmail.
CVE-2014-3618[0]:
Heap-overflow in procmail's formail utility when processing specially-crafted email headers
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2014-3618
[1] http://www.openwall.com/lists/oss-security/2014/09/03/8
Regards,
Salvatore
More information about the Secure-testing-team
mailing list