+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA1
+
fetchmail-SA-2006-01: crash when bouncing messages.
Topics: #1 crash when bouncing a message
#2 fetchmail 6.2.5.X end of life
Author: Matthias Andree
-Version: XXX
-Announced: XXX
+Version: 1.1
+Announced: 2006-01-22
Type: free() with bogus pointer
Impact: fetchmail crashes
Danger: low
http://bugs.debian.org/348747
Project URL: http://fetchmail.berlios.de/
-Affects: fetchmail version 6.3.0
- fetchmail version 6.3.1
+Affects: fetchmail release >= 6.3.0
+ fetchmail release < 6.3.2
+ fetchmail release candidates 6.3.2-rc1, -rc2 and -rc3
-Not affected: fetchmail 6.3.2
- fetchmail 6.2.5.5
+Not affected: fetchmail release candidate 6.3.2-rc4
+ fetchmail release 6.3.2
other versions not mentioned here or in the previous
sections have not been checked
Corrected: 2006-01-19 fetchmail 6.3.2-rc4
+ 2006-01-22 fetchmail 6.3.2
0. Release history
2006-01-19 internal review draft
2006-01-20 add CVE ID
+2006-01-22 release 1.0
+2006-01-25 release 1.1, add fetchmail 6.3.2 to "Not affected" above.
1. Background
=================================
Fetchmail contains a bug that causes itself to crash when bouncing a
-message to the originator or to the local postmaster. Fetchmail crashes
-when trying to free the dynamic array of failed addresses, and calls the
-free() function with an invalid pointer.
-
-Note that such messages are not RFC-822 conformant, so if the server has
-not been tampered with, the server software is faulty.
+message to the originator or to the local postmaster. The crash happens
+after the bounce message has been sent, when fetchmail tries to free the
+dynamic array of failed addresses, and calls the free() function with an
+invalid pointer. This bug was introduced short before fetchmail 6.3.0
+and is not present in the now discontinued 6.2.X series (see below).
3. Workaround
No further releases from the 6.2.5.X branch will be made.
The new 6.3.X stable branch has been available since 2005-11-30
-and will not change except for bugfixes, documentation and translations.
+and will not change except for bugfixes, documentation and message
+translations.
A. Copyright, License and Warranty
Use the information herein at your own risk.
END OF fetchmail-SA-2006-01.txt
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1.4.5 (GNU/Linux)
+
+iD8DBQFIV7WXvmGDOQUufZURAtJBAKCjxJ3q11MxXxAWqqFYlB/z0uJMVwCeLc2O
+SHK7Gu7QlDzSv3lahIbLUTU=
+=g1dk
+-----END PGP SIGNATURE-----