[34293] in bugtraq
[ GLSA 200403-06 ] Multiple remote buffer overflow vulnerabilities in Courier
daemon@ATHENA.MIT.EDU (Kurt Lieber)
Mon Mar 29 13:28:38 2004
Date: Mon, 29 Mar 2004 03:16:38 -0500
From: Kurt Lieber <klieber@gentoo.org>
To: bugtraq@securityfocus.com, full-disclosure@lists.netsys.com,
alerts@linuxsecurity.com
Message-ID: <20040329081638.GC24315@mail.lieber.org>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="Hy4a9G0dOYssRJVI"
Content-Disposition: inline
--Hy4a9G0dOYssRJVI
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200403-06
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Multiple remote buffer overflow vulnerabilities in Courier
Date: March 26, 2004
Bugs: #45584
ID: 200403-06
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Synopsis
========
Remote buffer overflow vulnerabilites have been found in Courier-IMAP
and Courier MTA. These exploits may allow the execution of abritrary
code, allowing unauthorized access to a vulnerable system.
Background
==========
Courier MTA is a multiprotocol mail server suite that provides webmail,
mailing lists, IMAP, and POP3 services. Courier-IMAP is a standalone
server that gives IMAP access to local mailboxes.
Affected packages
=================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
net-mail/courier-imap < 3.0.0 >= 3.0.0
net-mail/courier < 0.45 >= 0.45
Description
===========
The vulnerabilities have been found in the 'SHIFT_JIS' converter in
'shiftjis.c' and 'ISO2022JP' converter in 'so2022jp.c'. An attacker may
supply Unicode characters that exceed BMP (Basic Multilingual Plane)
range, causing an overflow.
Impact
======
An attacker without privileges may exploit this vulnerability remotely,
allowing arbitrary code to be executed in order to gain unauthorized
access.
Workaround
==========
While a workaround is not currently known for this issue, all users are
advised to upgrade to the latest version of the affected packages.
Resolution
==========
All users should upgrade to the current version of the affected
packages:
# emerge sync
# emerge -pv ">=net-mail/courier-imap-3.0.0"
# emerge ">=net-mail/courier-imap-3.0.0"
# ** Or; depending on your installation... **
# emerge -pv ">=net-mail/courier-0.45"
# emerge ">=net-mail/courier-0.45"
References
==========
[ 1 ] http://www.securityfocus.com/bid/9845
[ 2 ] http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0224
Concerns?
=========
Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security@gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.
--Hy4a9G0dOYssRJVI
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQFAZ9tmJPpRNiftIEYRAsB2AKCXuOnv706PSOym6bfk4JJ0aCP9OACePTwB
8BFOGhg8/4duMlOmjw6EUgw=
=uD1e
-----END PGP SIGNATURE-----
--Hy4a9G0dOYssRJVI--
