USN-31-1: cyrus21-imapd vulnerabilities
24 November 2004
cyrus21-imapd vulnerabilities
Releases
Details
Stefan Esser discovered several buffer overflows in the Cyrus IMAP
server. Due to insufficient checking within the argument parser of
the "partial" and "fetch" commands, an argument like "body[p" was
detected as "body.peek". This could cause a buffer overflow which
could be exploited to execute arbitrary attacker-supplied code.
This update also fixes an exploitable buffer overflow that could be
triggered in situations when memory allocation fails (i. e. when no
free memory is available any more).
Both vulnerabilities can lead to privilege escalation to root.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 4.10
-
cyrus21-imapd
-
In general, a standard system update will make all the necessary changes.