Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2009-2632

Buffer overflow in the SIEVE script component (sieve/script.c), as used in cyrus-imapd in Cyrus IMAP Server 2.2.13 and 2.3.14, and Dovecot 1.0 before 1.0.4 and 1.1 before 1.1.7, allows local users to execute arbitrary code and read or modify arbitrary messages via a crafted SIEVE script, related to the incorrect use of the sizeof operator for determining buffer length, combined with an integer signedness error.

Related bugs and status

CVE-2009-2632 (Candidate) is related to these bugs:

Bug #438363: Please, fix buffer overflow vulnerability in SIEVE

Summary				In	Importance	Status
	438363	Please, fix buffer overflow vulnerability in SIEVE		cyrus-imapd-2.2 (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [Cyrus-CVS] 20090902 s...
MLIST: [Cyrus-CVS] 20090902 s...
DEBIAN: DSA-1881
BID: 36296
SECUNIA: 36629
SECUNIA: 36632
VUPEN: ADV-2009-2559
MLIST: [Dovecot-news] 2009091...
MLIST: [oss-security] 2009091...
FEDORA: FEDORA-2009-9559
BID: 36377
OSVDB: 58103
SECUNIA: 36698
SECUNIA: 36713
VUPEN: ADV-2009-2641
UBUNTU: USN-838-1
SECUNIA: 36904
SUSE: SUSE-SR:2009:016
CONFIRM: http://support.apple.c...
APPLE: APPLE-SA-2010-03-29-1
CONFIRM: https://bugzilla.andre...
OVAL: oval:org.mitre.oval:de...