CVE-2009-2632 in Ubuntu

CVE-2009-2632

Priority

Description

Buffer overflow in the SIEVE script component (sieve/script.c), as used in
cyrus-imapd in Cyrus IMAP Server 2.2.13 and 2.3.14, and Dovecot 1.0 before
1.0.4 and 1.1 before 1.1.7, allows local users to execute arbitrary code
and read or modify arbitrary messages via a crafted SIEVE script, related
to the incorrect use of the sizeof operator for determining buffer length,
combined with an integer signedness error.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2632
http://dovecot.org/list/dovecot-news/2009-September/000135.html
https://ubuntu.com/security/notices/USN-838-1

Bugs

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=546656 (dovecot)
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=547712 (kolab-cyrus-imapd)

Notes

mdeslaur

version specified is of dovecot-sieve, not of the dovecot itself
although code is present in dapper's dovecot, we don't compile
the sieve plugin

Package

Source: cyrus-imapd-2.2 (LP Ubuntu Debian)

Upstream:	released (2.2.13-15)
Ubuntu 22.04 LTS (Jammy Jellyfish):	not-affected (2.2.13-16ubuntu1)

Patches:

Upstream:	https://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/sieve/script.c.diff?r1=1.67&r2=1.68
Debdiff:	https://bugs.launchpad.net/ubuntu/+source/cyrus-imapd-2.2/+bug/438363

Package

Source: dovecot (LP Ubuntu Debian)

Upstream:	released (1.1.7)
Ubuntu 22.04 LTS (Jammy Jellyfish):	released (1:1.1.11-0ubuntu9)

Patches:

Upstream:	http://hg.dovecot.org/dovecot-sieve-1.1/rev/049f22520628
Upstream:	http://hg.dovecot.org/dovecot-sieve-1.1/rev/4577c4e1130d

Package

Source: kolab-cyrus-imapd (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 22.04 LTS (Jammy Jellyfish):	not-affected (2.2.13-9)

Patches:

More Information

Updated: 2022-02-10 23:38:00 UTC (commit acb3d89ab51f1d5e5543fa993969c0eb13c71f04)