[Bug 132088] [Sync request] Sync postfix-policyd (1.80-2.2) from Debian unstable (main)
Michael Bienia
michael at vorlon.ping.de
Sun Aug 12 23:59:10 BST 2007
Public bug reported:
Binary package hint: postfix-policyd
Please sync postfix-policyd (1.80-2.2) from Debian unstable (main).
The current package has no Ubuntu changes.
Thanks.
Changelog:
postfix-policyd (1.80-2.2) unstable; urgency=high
* Non-maintainer upload
* Fix buffer overflow in the w_read function in sockets.c to avoid
possible DoS and execution of arbitary code via long SMTP commands
(apply directly, because no patch system is used so far)
(Closes: #435735) Fixes: CVE-2007-3791
-- Steffen Joeris <white at debian.org> Sun, 12 Aug 2007 10:46:25 +0000
** Affects: postfix-policyd (Ubuntu)
Importance: Wishlist
Status: Confirmed
** Changed in: postfix-policyd (Ubuntu)
Importance: Undecided => Wishlist
Status: New => Confirmed
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2007-3791
--
[Sync request] Sync postfix-policyd (1.80-2.2) from Debian unstable (main)
https://bugs.launchpad.net/bugs/132088
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is a direct subscriber.
More information about the ubuntu-archive
mailing list