Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Mon, 06 Jun 2011 17:02:27 +0200
From: Matthias Andree <>
Subject: fetchmail 6.3.20 release to fix CVE-2011-1947 (was: CVE request for
 fetchmail STARTTLS hang (Denial of Service))


I've just released fetchmail 6.3.20 to fix the STARTTLS
denial-of-service problem present in all earlier fetchmail releases,

Note that distributors are advised to thoroughly check the NEWS file and
consider doing a stable release update rather than just backporting the
security fixes, there were several notable bug fixes.

At least do note <> -
it's a good opportunity to fix this, too...




Best regards,
Matthias Andree
Hat: fetchmail maintainer

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ