| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: fetchmail | Distribution: Trustix Secure Linux |
| Version: 6.2.5.5 | Vendor: Comodo Trustix |
| Release: 3tr | Build date: Thu Sep 20 11:58:45 2007 |
| Group: Trustix Official | Build host: ttrmgtnived.comodo.net |
| Size: 784942 | Source RPM: fetchmail-6.2.5.5-3tr.src.rpm |
| Packager: Comodo Trustix <http://www.trustix.com> | |
| Summary: A remote mail retrieval and forwarding utility. | |
Fetchmail is a remote mail retrieval and forwarding utility intended for use over on-demand TCP/IP links, like SLIP or PPP connections. Fetchmail supports every remote-mail protocol currently in use on the Internet (POP2, POP3, RPOP, APOP, KPOP, all IMAPs, ESMTP ETRN, IPv6, and IPSEC) for retrieval. Then Fetchmail forwards the mail through SMTP so you can read it through your favorite mail client.
GPL
* Thu Sep 20 2007 Nived Gopalan <nived at trustix dot org> 6.2.5.5-3tr
- SECURITY Fix: An error exists in fetchmail which allows
context-dependent attackers to cause a denial of service (NULL
dereference and application crash) by refusing certain warning
messages that are sent over SMTP.
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the names CVE-2007-4565 to this issue.
* Fri Feb 09 2007 Bipin S <bipin at trustix dot org> 6.2.5.5-2tr
- SECURITY Fix: Fetchmail does not properly enforce TLS and may
transmit cleartext passwords over unsecured links if certain
circumstances occur, which allows remote attackers to obtain
sensitive information via man-in-the-middle (MITM) attacks.
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CVE-2006-5867 to this issue.
* Thu Jan 05 2006 Nived Gopalan <nived at trustix dot org> 6.2.5.5-1tr
- New Upstream.
- SECURITY Fix: A vulnerability has been reported in Fetchmail caused due
to a null pointer dereferencing error when handling a message without
email headers. This can be exploited to crash Fetchmail when the
upstream mail server sends a message without headers.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2005-4348 to this issue.
* Mon Jul 25 2005 Syed Shabir Zakiullah <syedshabir at comodo dot com> 6.2.5.2-1tr
- New Upstream
- Security Fix: Remote code injection vulnerability in fetchmail
- The POP3 code that deals with UIDs (from the UIDL) reads the responses returned
by the POP3 server into fixed-size buffers allocated on the stack, without
limiting the input length to the buffer size. A compromised or malicious POP3
server can thus overrun fetchmail's stack. This affects POP3 and all of its
variants, for instance but not limited to APOP
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2005-2335 to this issue.
* Mon May 30 2005 Bipin <bipin at comodo dot com> 6.2.5-1tr
- New entry into TSL-2.2 official
* Fri May 27 2005 Ajith Thampi <ajith at comodo dot com> 6.2.5-2ta
- Removed the fetchmailconf binary as it is no more needed.
- Added ssl support and fallback to procmail
- placing man pages into mandir as expected
* Wed Apr 13 2005 Thushara Gopalakrishnan <thushara at comodo dot com> 6.2.5-1th
- Initial release
/usr/bin/fetchmail /usr/share/doc/fetchmail-6.2.5.5 /usr/share/doc/fetchmail-6.2.5.5/COPYING /usr/share/doc/fetchmail-6.2.5.5/FAQ /usr/share/doc/fetchmail-6.2.5.5/FEATURES /usr/share/doc/fetchmail-6.2.5.5/INSTALL /usr/share/doc/fetchmail-6.2.5.5/NEWS /usr/share/doc/fetchmail-6.2.5.5/NOTES /usr/share/doc/fetchmail-6.2.5.5/README /usr/share/doc/fetchmail-6.2.5.5/design-notes.html /usr/share/doc/fetchmail-6.2.5.5/fetchmail-FAQ.html /usr/share/doc/fetchmail-6.2.5.5/fetchmail-features.html /usr/share/doc/fetchmail-6.2.5.5/todo.html /usr/share/man/man1/fetchmail.1.gz
Generated by rpm2html 1.8.1
Fabrice Bellet, Mon May 20 05:14:22 2013