CVE-2005-2335

Publication date 27 July 2005

Last updated 24 July 2024

Ubuntu priority

Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows remote POP3 servers to cause a denial of service and possibly execute arbitrary code via long UIDL responses. NOTE: a typo in an advisory accidentally used the wrong CVE identifier for the Fetchmail issue. This is the correct identifier.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
fetchmail	7.04 feisty	Fixed 6.3.6-1ubuntu2
	6.10 edgy	Fixed 6.3.4-1ubuntu4.1
	6.06 LTS dapper	Fixed 6.3.2-2ubuntu2.1

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-153-1
fetchmail vulnerability
26 July 2005

Other references

https://www.cve.org/CVERecord?id=CVE-2005-2335