info
discussion
exploit
solution
references
Pine Malformed Header Denial of Service Vulnerability
Solution:
RedHat, FreeBSD and Mandrake have released patches for this vulnerability:
University of Washington Pine 4.0.4
Red Hat Inc. 5.2 alpha imap-2000-2.5.alpha.rpm
ftp://updates.redhat.com/5.2/alpha/imap-2000-2.5.alpha.rpm
Red Hat Inc. 5.2 alpha imap-devel-2000-2.5.alpha.rpm
ftp://updates.redhat.com/5.2/alpha/imap-devel-2000-2.5.alpha.rpm
Red Hat Inc. 5.2 i386 imap-2000-2.5.i386.rpm
ftp://updates.redhat.com/5.2/i386/imap-2000-2.5.i386.rpm
Red Hat Inc. 5.2 i386 imap-devel-2000-2.5.i386.rpm
ftp://updates.redhat.com/5.2/i386/imap-devel-2000-2.5.i386.rpm
Red Hat Inc. 5.2 sparc imap-2000-2.5.sparc.rpm
ftp://updates.redhat.com/5.2/sparc/imap-2000-2.5.sparc.rpm
Red Hat Inc. 5.2 sparc imap-devel-2000-2.5.sparc.rpm
ftp://updates.redhat.com/5.2/sparc/imap-devel-2000-2.5.sparc.rpm
RedHat 5.2 (i386): pine-4.30-1.52
ftp://updates.redhat.com/5.2/i386/pine-4.30-1.52.i386.rpm
RedHat 5.2 (Sparc): pine-4.30-1.52
ftp://updates.redhat.com/5.2/sparc/pine-4.30-1.52.sparc.rpm
University of Washington Pine 4.10
MandrakeSoft 6.0 i386 pine-4.30-3.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.0/RPMS/ pine-4.30-3.3mdk.i586.rpm
MandrakeSoft 6.1 i386 pine-4.30-3.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.1/RPMS/ pine-4.30-3.3mdk.i586.rpm
MandrakeSoft 7.0 i386 pine-4.30-3.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.0/RPMS/ pine-4.30-3.3mdk.i586.rpm
Red Hat Inc. 6.0 alpha imap-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.0/alpha/imap-2000-2.6.alpha.rpm
Red Hat Inc. 6.0 alpha imap-devel-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.0/alpha/imap-devel-2000-2.6.alpha.rpm
Red Hat Inc. 6.0 i386 imap-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.0/i386/imap-2000-2.6.i386.rpm
Red Hat Inc. 6.0 i386 imap-devel-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.0/i386/imap-devel-2000-2.6.i386.rpm
Red Hat Inc. 6.0 sparc imap-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.0/sparc/imap-2000-2.6.sparc.rpm
Red Hat Inc. 6.0 sparc imap-devel-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.0/sparc/imap-devel-2000-2.6.sparc.rpm
Red Hat Inc. 6.1 alpha imap-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.1/alpha/imap-2000-2.6.alpha.rpm
Red Hat Inc. 6.1 alpha imap-devel-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.1/alpha/imap-devel-2000-2.6.alpha.rpm
Red Hat Inc. 6.1 alpha pine-4.30-1.62.alpha.rpm
ftp://updates.redhat.com/6.1/alpha/pine-4.30-1.62.alpha.rpm
Red Hat Inc. 6.1 i386 imap-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.1/i386/imap-2000-2.6.i386.rpm
Red Hat Inc. 6.1 i386 imap-devel-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.1/i386/imap-devel-2000-2.6.i386.rpm
Red Hat Inc. 6.1 i386 pine-4.30-1.62.i386.rpm
ftp://updates.redhat.com/6.1/i386/pine-4.30-1.62.i386.rpm
Red Hat Inc. 6.1 sparc imap-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.1/sparc/imap-2000-2.6.sparc.rpm
Red Hat Inc. 6.1 sparc imap-devel-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.1/sparc/imap-devel-2000-2.6.sparc.rpm
Red Hat Inc. 6.1 sparc pine-4.30-1.62.sparc.rpm
ftp://updates.redhat.com/6.1/sparc/pine-4.30-1.62.sparc.rpm
RedHat 6.0 (Alpha): pine-4.30-1.62
ftp://updates.redhat.com/6.0/alpha/pine-4.30-1.62.alpha.rpm
RedHat 6.0 (i386): pine-4.30-1.62
ftp://updates.redhat.com/6.0/i386/pine-4.30-1.62.i386.rpm
RedHat 6.0 (Sparc): pine-4.30-1.62
ftp://updates.redhat.com/6.0/sparc/pine-4.30-1.62.sparc.rpm
University of Washington Pine 4.21
FreeBSD ports-3 pine-4.21
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-3-stable/mail/pi ne-4.21.tgz
FreeBSD ports-4 alpha pine-4.21
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-4-stable/mail/p ine-4.21.tgz
FreeBSD ports-4 i386 pine-4.21
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-4-stable/mail/pi ne-4.21.tgz
FreeBSD ports-5 alpha pine-4.21
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-5-current/mail/ pine-4.21.tgz
FreeBSD ports-5 i386 pine-4.21
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-5-current/mail/p ine-4.21.tgz
MandrakeSoft 7.1 i386 pine-4.30-3.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.1/RPMS/ pine-4.30-3.2mdk.i586.rpm
MandrakeSoft 7.2 i386 pine-4.30-3.1mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.2/RPMS/ pine-4.30-3.1mdk.i586.rpm
Red Hat Inc. 6.2 alpha imap-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.2/alpha/imap-2000-2.6.alpha.rpm
Red Hat Inc. 6.2 alpha imap-devel-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.2/alpha/imap-devel-2000-2.6.alpha.rpm
Red Hat Inc. 6.2 alpha pine-4.30-1.62.alpha.rpm
ftp://updates.redhat.com/6.2/alpha/pine-4.30-1.62.alpha.rpm
Red Hat Inc. 6.2 i386 imap-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.2/i386/imap-2000-2.6.i386.rpm
Red Hat Inc. 6.2 i386 imap-devel-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.2/i386/imap-devel-2000-2.6.i386.rpm
Red Hat Inc. 6.2 i386 pine-4.30-1.62.i386.rpm
ftp://updates.redhat.com/6.2/i386/pine-4.30-1.62.i386.rpm
Red Hat Inc. 6.2 sparc imap-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.2/sparc/imap-2000-2.6.sparc.rpm
Red Hat Inc. 6.2 sparc imap-devel-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.2/sparc/imap-devel-2000-2.6.sparc.rpm
Red Hat Inc. 6.2 sparc pine-4.30-1.62.sparc.rpm
ftp://updates.redhat.com/6.2/sparc/pine-4.30-1.62.sparc.rpm
Red Hat Inc. 7.0 alpha imap-2000-3.alpha.rpm
ftp://updates.redhat.com/7.0/alpha/imap-2000-3.alpha.rpm
Red Hat Inc. 7.0 alpha imap-devel-2000-3.alpha.rpm
ftp://updates.redhat.com/7.0/alpha/imap-devel-2000-3.alpha.rpm
Red Hat Inc. 7.0 alpha pine-4.30-2.alpha.rpm
ftp://updates.redhat.com/7.0/alpha/pine-4.30-2.alpha.rpm
Red Hat Inc. 7.0 i386 imap-2000-3.i386.rpm
ftp://updates.redhat.com/7.0/i386/imap-2000-3.i386.rpm
Red Hat Inc. 7.0 i386 imap-devel-2000-3.i386.rpm
ftp://updates.redhat.com/7.0/i386/imap-devel-2000-3.i386.rpm
Red Hat Inc. 7.0 i386 pine-4.30-2.i386.rpm
ftp://updates.redhat.com/7.0/i386/pine-4.30-2.i386.rpm
Privacy Statement
Copyright 2010, SecurityFocus
