[SECURITY] Fedora 10 Update: fetchmail-6.3.8-9.fc10

updates at fedoraproject.org updates at fedoraproject.org
Fri Sep 4 04:08:14 UTC 2009


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-8770
2009-08-20 20:32:57
--------------------------------------------------------------------------------

Name        : fetchmail
Product     : Fedora 10
Version     : 6.3.8
Release     : 9.fc10
URL         : http://fetchmail.berlios.de/
Summary     : A remote mail retrieval and forwarding utility
Description :
Fetchmail is a remote mail retrieval and forwarding utility intended
for use over on-demand TCP/IP links, like SLIP or PPP connections.
Fetchmail supports every remote-mail protocol currently in use on the
Internet (POP2, POP3, RPOP, APOP, KPOP, all IMAPs, ESMTP ETRN, IPv6,
and IPSEC) for retrieval. Then Fetchmail forwards the mail through
SMTP so you can read it through your favorite mail client.

Install fetchmail if you need to retrieve mail over SLIP or PPP
connections.

--------------------------------------------------------------------------------
Update Information:

If fetchmail is running in daemon mode, it must be restarted for this update to
take effect (use the "fetchmail --quit" command to stop the fetchmail process).
--------------------------------------------------------------------------------
ChangeLog:

* Wed Aug 19 2009 Vitezslav Crhonek <vcrhonek at redhat.com> - 6.3.8-9
- Fix SSL null terminator bypass (CVE-2009-2666)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #515804 - CVE-2009-2666 fetchmail: SSL null terminator bypass
        https://bugzilla.redhat.com/show_bug.cgi?id=515804
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update fetchmail' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------




More information about the package-announce mailing list