Launchpad CVE tracker

CVE 2005-0102

Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier allows local users or remote malicious POP3 servers to execute arbitrary code via a length value of -1, which leads to a zero byte memory allocation and a buffer overflow.

Related bugs and status

CVE-2005-0102 (Candidate) is related to these bugs:

Bug #11887: evolution: Evolution does not authenticate using MD5 methods (DIGEST/CRAM) and remains plaintext

Summary				In	Importance	Status
	11887	evolution: Evolution does not authenticate using MD5 methods (DIGEST/CRAM) and remains plaintext		evolution (Ubuntu)	High	Fix Released
	11887	evolution: Evolution does not authenticate using MD5 methods (DIGEST/CRAM) and remains plaintext		evolution (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

DEBIAN: DSA-673
GENTOO: GLSA-200501-35
REDHAT: RHSA-2005:238
REDHAT: RHSA-2005:397
BID: 12354
SECTRACK: 1012981
SECUNIA: 13830
MANDRAKE: MDKSA-2005:024
CONECTIVA: CLA-2005:925
XF: evolution-camellockhel...
OVAL: oval:org.mitre.oval:de...
UBUNTU: USN-69-1

Launchpad.net

CVE 2005-0102

Related bugs and status

Related bugs

References