Courier Multiple Remote Buffer Overflow Vulnerabilities

Solution:
The vendor has released Courier MTA 0.45, Courier-IMAP 3.0.0, and SqWebMail 4.0.0 to address these issues.

Gentoo have released an advisory (GLSA 200403-06) and updates to address this issue. Gentoo users are advised to upgrade to current packages by emerging the updated packages as follows:
# emerge sync

And depending on your installation:
# emerge -pv ">=net-mail/courier-imap-3.0.0"
# emerge ">=net-mail/courier-imap-3.0.0"

Or:
# emerge -pv ">=net-mail/courier-0.45"
# emerge ">=net-mail/courier-0.45"


Double Precision Incorporated Courier MTA 0.37.3

Double Precision Incorporated Courier MTA 0.38.1

Double Precision Incorporated Courier MTA 0.40

Double Precision Incorporated Courier MTA 0.40.1

Double Precision Incorporated Courier MTA 0.42.2

Double Precision Incorporated Courier MTA 0.43

Double Precision Incorporated Courier MTA 0.43.1

Double Precision Incorporated Courier MTA 0.43.2

Double Precision Incorporated Courier MTA 0.44

Double Precision Incorporated Courier MTA 0.44.2

Inter7 Courier-IMAP 1.6

Inter7 Courier-IMAP 1.7

Inter7 Courier-IMAP 2.0 .0

Inter7 Courier-IMAP 2.1

Inter7 Courier-IMAP 2.1.1

Inter7 Courier-IMAP 2.1.2

Inter7 Courier-IMAP 2.2 .0

Inter7 Courier-IMAP 2.2.1

Double Precision Incorporated SqWebMail 3.5.2

Double Precision Incorporated SqWebMail 3.5.3

Double Precision Incorporated SqWebMail 3.6 .0

Double Precision Incorporated SqWebMail 3.6.1

Double Precision Incorporated SqWebMail 3.6.2


 

Privacy Statement
Copyright 2010, SecurityFocus