The Cyrus SASL library provides an authentication API for mail clients and servers. A format bug was found in one of the logging functions, that could be used by an attacker to gain access to a machine or to acquire higher privileges.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE | 7.0 | sparc | sasl | < 1.5.21-30 | sasl-1.5.21-30.sparc.rpm |
openSUSE | 7.3 | ppc | cyrus-sasl-gssapi | < 1.5.24-92 | cyrus-sasl-gssapi-1.5.24-92.ppc.rpm |
openSUSE | 7.2 | i386 | cyrus-sasl-devel | < 1.5.24-158 | cyrus-sasl-devel-1.5.24-158.i386.rpm |
openSUSE | 7.0 | ppc | sasl | < 1.5.21-30 | sasl-1.5.21-30.ppc.rpm |
openSUSE | 7.3 | i386 | cyrus-sasl-gssapi | < 1.5.24-157 | cyrus-sasl-gssapi-1.5.24-157.i386.rpm |
openSUSE | 7.3 | i386 | cyrus-sasl | < 1.5.24-157 | cyrus-sasl-1.5.24-157.i386.rpm |
openSUSE | 7.0 | i386 | sasl | < 1.5.21-79 | sasl-1.5.21-79.i386.rpm |
openSUSE | 7.1 | ppc | cyrus-sasl | < 1.5.24-92 | cyrus-sasl-1.5.24-92.ppc.rpm |
openSUSE | 7.2 | i386 | cyrus-sasl | < 1.5.24-158 | cyrus-sasl-1.5.24-158.i386.rpm |
openSUSE | 7.3 | ppc | cyrus-sasl-devel | < 1.5.24-92 | cyrus-sasl-devel-1.5.24-92.ppc.rpm |