Date: Tue, 04 Mar 1997 16:19:00 +0100 From: Eivind Eklund <eivind@dimaga.com> To: security@freebsd.org Subject: Old imapd, ipop2d, ipop3d Message-ID: <3.0.32.19970304161858.00c3c710@dimaga.com>
next in thread | raw e-mail | index | archive | help
Yesterday, a security hole allowing remote root was discovered in imapd,
ipop2 and ipop3d (NOT popper). If you are running versions of these older
than 4.1-BETA (eg, the versions enclosed with 2.1.0 (and 2.1.5?)), it is a
_very_ good idea to upgrade to the version presently in the ports collection.
The executables in question is in /usr/local/libexec/{imapd,ipop2d,ipop3d}
- if these are old (not from 1997) you are certain to be afflicted with the
bug.
(Does this belong in freebsd-announce? RedHat put out an announcement...)
Eivind Eklund perhaps@yes.no http://maybe.yes.no/perhaps/ eivind@freebsd.org
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.32.19970304161858.00c3c710>