Date: Thu, 16 Aug 2001 19:00:18 -0700 From: Kris Kennaway <kris@obsecurity.org> To: Dragos Ruiu <dr@kyx.net> Cc: security@FreeBSD.ORG Subject: Re: does the fetchmail ssl remote vuln apply to freebsd? Message-ID: <20010816190018.A81586@xor.obsecurity.org> In-Reply-To: <0108161841280S.33176@smp.kyx.net>; from dr@kyx.net on Thu, Aug 16, 2001 at 06:40:47PM -0700 References: <0108161841280S.33176@smp.kyx.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--DocE+STaALJfprDB Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Thu, Aug 16, 2001 at 06:40:47PM -0700, Dragos Ruiu wrote: > http://lwn.net/alerts/EnGarde/ESA-20010816-01.php3 I'm not certain; it's usually really hard to figure out details of vulnerabilities from those Linnex advisories. They usually don't bother to mention what versions are affected: sometimes they don't even mention what the problem is, although this one at least mentions the nature of the bug, if not the effect. There was something which sounds similar fixed in fetchmail 5.8.17, for which we hope to have an advisory out before too long. I'm a bit snowed under at the moment. Kris --DocE+STaALJfprDB Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7fHqyWry0BWjoQKURAk9nAKDlvkJysyFcTre46dZT/c6C3/IgAACfavEf MKVx9OV0khRkenVkpU2oWIM= =rniq -----END PGP SIGNATURE----- --DocE+STaALJfprDB-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010816190018.A81586>