[SECURITY] [DLA 1173-1] procmail security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 1173-1] procmail security update
From: Chris Lamb <lamby@debian.org>
Date: Sat, 18 Nov 2017 01:13:55 +0000
Message-id: <[🔎] 1510967635.3701198.1176501784.659B7620@webmail.messagingengine.com>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : procmail
Version        : 3.22-20+deb7u2
CVE ID         : CVE-2017-16844
Debian Bug     : #876511

It was discovered that there was a heap-based buffer overflow in procmail, a
tool used to sort incoming mail into various directories and filter out spam
messages.

For Debian 7 "Wheezy", this issue has been fixed in procmail version
3.22-20+deb7u2.

We recommend that you upgrade your procmail packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=MEZR
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 1172-1] firefox-esr security update
Next by Date: [SECURITY] [DLA 1174-1] konversation security update
Previous by thread: [SECURITY] [DLA 1172-1] firefox-esr security update
Next by thread: [SECURITY] [DLA 1174-1] konversation security update
Index(es):
- Date
- Thread