Re: [DONE] wml://security/2009/dsa-1{895,910,881}.wml
On Sun, Jul 10, 2016 at 04:17:05PM +0500, Lev Lamberov wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> - --- english/security/2009/dsa-1881.wml 2009-09-07 21:13:55.000000000 +0600
> +++ russian/security/2009/dsa-1881.wml 2016-07-10 16:16:57.309091865 +0500
> @@ -1,26 +1,27 @@
> - -<define-tag description>buffer overflow</define-tag>
> +#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov"
> +<define-tag description>переполнение буфера</define-tag>
> <define-tag moreinfo>
> - -<p>It was discovered that the SIEVE component of cyrus-imapd, a highly scalable
> - -enterprise mail system, is vulnerable to a buffer overflow when processing
> - -SIEVE scripts. Due to incorrect use of the sizeof() operator an attacker is
> - -able to pass a negative length to snprintf() calls resulting in large positive
> - -values due to integer conversion. This causes a buffer overflow which can be
> - -used to elevate privileges to the cyrus system user. An attacker who is able
> - -to install SIEVE scripts executed by the server is therefore able to read and
> - -modify arbitrary email messages on the system.</p>
> +<p>Было обнаружено, что компонент SIEVE из cyrus-imapd, высоко масштабируемой
> +почтовой системе корпоративного уровня, уязвим к переполнению буфера при обработке
систем_ы_
Reply to: