You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa cyrus

Sigurnosni nedostatak programskog paketa cyrus

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

– ————————————————————————-
Debian Security Advisory DSA-4458-1 security@debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
June 08, 2019 https://www.debian.org/security/faq
– ————————————————————————-

Package : cyrus-imapd
CVE ID : CVE-2019-11356

A flaw was discovered in the CalDAV feature in httpd of the Cyrus IMAP
server, leading to denial of service or potentially the execution of
arbitrary code via a crafted HTTP PUT operation for an event with a long
iCalendar property name.

For the stable distribution (stretch), this problem has been fixed in
version 2.5.10-3+deb9u1.

We recommend that you upgrade your cyrus-imapd packages.

For the detailed security status of cyrus-imapd please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/cyrus-imapd

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
—–BEGIN PGP SIGNATURE—–
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=4fQm
—–END PGP SIGNATURE—–

Top
More in Preporuke
Sigurnosni nedostaci jezgre operacijskog sustava

Otkriveni su sigurnosni nedostaci jezgre operacijskog sustava Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju izazivanje DoS stanja ili izvršavanje proizvoljnog programskog...

Close