Synopsis: Moderate: fetchmail security update
Issue date: 2007-06-07
CVE Names: CVE-2007-1558
A flaw was found in the way fetchmail processed certain APOP authentication
requests. By sending certain responses when fetchmail attempted to
authenticate against an APOP server, a remote attacker could potentially
acquire certain portions of a user's authentication credentials.
(CVE-2007-1558)
SL 3.0.x
SRPMS:
fetchmail-6.2.0-3.el3.4.src.rpm
i386:
fetchmail-6.2.0-3.el3.4.i386.rpm
x86_64:
fetchmail-6.2.0-3.el3.4.x86_64.rpm
SL 4.x
SRPMS:
fetchmail-6.2.5-6.0.1.el4.src.rpm
i386:
fetchmail-6.2.5-6.0.1.el4.i386.rpm
x86_64:
fetchmail-6.2.5-6.0.1.el4.x86_64.rpm
SL 5.x
SRPMS:
fetchmail-6.3.6-1.0.1.el5.src.rpm
i386:
fetchmail-6.3.6-1.0.1.el5.i386.rpm
x86_64:
fetchmail-6.3.6-1.0.1.el5.x86_64.rpm
-Connie Sieh
-Troy Dawson