diff options
author | V3n3RiX <venerix@redcorelinux.org> | 2017-10-09 18:53:29 +0100 |
---|---|---|
committer | V3n3RiX <venerix@redcorelinux.org> | 2017-10-09 18:53:29 +0100 |
commit | 4f2d7949f03e1c198bc888f2d05f421d35c57e21 (patch) | |
tree | ba5f07bf3f9d22d82e54a462313f5d244036c768 /metadata/glsa/glsa-200803-25.xml |
reinit the tree, so we can have metadata
Diffstat (limited to 'metadata/glsa/glsa-200803-25.xml')
-rw-r--r-- | metadata/glsa/glsa-200803-25.xml | 81 |
1 files changed, 81 insertions, 0 deletions
diff --git a/metadata/glsa/glsa-200803-25.xml b/metadata/glsa/glsa-200803-25.xml new file mode 100644 index 000000000000..1e0b0e9f7bcf --- /dev/null +++ b/metadata/glsa/glsa-200803-25.xml @@ -0,0 +1,81 @@ +<?xml version="1.0" encoding="utf-8"?> +<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd"> +<glsa id="200803-25"> + <title>Dovecot: Multiple vulnerabilities</title> + <synopsis> + Two vulnerabilities in Dovecot allow for information disclosure and + argument injection. + </synopsis> + <product type="ebuild">dovecot</product> + <announced>2008-03-18</announced> + <revised>2008-03-18: 01</revised> + <bug>212336</bug> + <bug>213030</bug> + <access>remote</access> + <affected> + <package name="net-mail/dovecot" auto="yes" arch="*"> + <unaffected range="ge">1.0.13-r1</unaffected> + <vulnerable range="lt">1.0.13-r1</vulnerable> + </package> + </affected> + <background> + <p> + Dovecot is a lightweight, fast and easy to configure IMAP and POP3 mail + server. + </p> + </background> + <description> + <p> + Dovecot uses the group configured via the "mail_extra_groups" setting, + which should be used to create lockfiles in the /var/mail directory, + when accessing arbitrary files (CVE-2008-1199). Dovecot does not escape + TAB characters in passwords when saving them, which might allow for + argument injection in blocking passdbs such as MySQL, PAM or shadow + (CVE-2008-1218). + </p> + </description> + <impact type="normal"> + <p> + Remote attackers can exploit the first vulnerability to disclose + sensitive data, such as the mail of other users, or modify files or + directories that are writable by group via a symlink attack. Please + note that the "mail_extra_groups" setting is set to the "mail" group by + default when the "mbox" USE flag is enabled. + </p> + <p> + The second vulnerability can be abused to inject arguments for internal + fields. No exploitation vectors are known for this vulnerability that + affect previously stable versions of Dovecot in Gentoo. + </p> + </impact> + <workaround> + <p> + There is no known workaround at this time. + </p> + </workaround> + <resolution> + <p> + All Dovecot users should upgrade to the latest version: + </p> + <code> + # emerge --sync + # emerge --ask --oneshot --verbose ">=net-mail/dovecot-1.0.13-r1"</code> + <p> + This version removes the "mail_extra_groups" option and introduces a + "mail_privileged_group" setting which is handled safely. + </p> + </resolution> + <references> + <uri link="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1199">CVE-2008-1199</uri> + <uri link="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1218">CVE-2008-1218</uri> + </references> + <metadata tag="requester" timestamp="2008-03-11T18:35:36Z"> + keytoaster + </metadata> + <metadata tag="submitter" timestamp="2008-03-12T01:34:31Z"> + rbu + </metadata> + <metadata tag="bugReady" timestamp="2008-03-18T11:19:55Z"> + rbu + </metadata> +</glsa> |