Fetchmail is a remote mail retrieval and forwarding utility intended
for use over on-demand TCP/IP links, like SLIP or PPP connections.
A flaw was found in the way fetchmail processed certain APOP authentication
requests. By sending certain responses when fetchmail attempted to
authenticate against an APOP server, a remote attacker could potentially
acquire certain portions of a user’s authentication credentials.
(CVE-2007-1558)
All users of fetchmail should upgrade to this updated package, which
contains a backported patch to correct this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 4 | ia64 | fetchmail | < 6.2.5-6.0.1.el4 | fetchmail-6.2.5-6.0.1.el4.ia64.rpm |
RedHat | 3 | x86_64 | fetchmail | < 6.2.0-3.el3.4 | fetchmail-6.2.0-3.el3.4.x86_64.rpm |
RedHat | 3 | ppc | fetchmail | < 6.2.0-3.el3.4 | fetchmail-6.2.0-3.el3.4.ppc.rpm |
RedHat | 5 | i386 | fetchmail | < 6.3.6-1.0.1.el5 | fetchmail-6.3.6-1.0.1.el5.i386.rpm |
RedHat | 2 | ia64 | fetchmailconf | < 5.9.0-21.7.3.el2.1.6 | fetchmailconf-5.9.0-21.7.3.el2.1.6.ia64.rpm |
RedHat | 3 | s390 | fetchmail | < 6.2.0-3.el3.4 | fetchmail-6.2.0-3.el3.4.s390.rpm |
RedHat | 2 | ia64 | fetchmail | < 5.9.0-21.7.3.el2.1.6 | fetchmail-5.9.0-21.7.3.el2.1.6.ia64.rpm |
RedHat | 2 | i386 | fetchmailconf | < 5.9.0-21.7.3.el2.1.6 | fetchmailconf-5.9.0-21.7.3.el2.1.6.i386.rpm |
RedHat | 4 | ppc | fetchmail | < 6.2.5-6.0.1.el4 | fetchmail-6.2.5-6.0.1.el4.ppc.rpm |
RedHat | 5 | ppc | fetchmail | < 6.3.6-1.0.1.el5 | fetchmail-6.3.6-1.0.1.el5.ppc.rpm |