Candidate: CVE-2010-1167
PublicDate: 2010-05-07 18:24:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1167
Description:
 fetchmail 4.6.3 through 6.3.16, when debug mode is enabled, does not
 properly handle invalid characters in a multi-character locale, which
 allows remote attackers to cause a denial of service (memory consumption
 and application crash) via a crafted (1) message header or (2) POP3 UIDL
 list.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_fetchmail:
upstream_fetchmail: released (6.3.17)
dapper_fetchmail: ignored (reached end-of-life)
hardy_fetchmail: ignored (reached end-of-life)
jaunty_fetchmail: ignored (reached end-of-life)
karmic_fetchmail: ignored (reached end-of-life)
lucid_fetchmail: ignored (reached end-of-life)
maverick_fetchmail: not-affected (6.3.17-4ubuntu1)
natty_fetchmail: not-affected (6.3.17-4ubuntu1)
oneiric_fetchmail: not-affected (6.3.17-4ubuntu1)
precise_fetchmail: not-affected (6.3.17-4ubuntu1)
quantal_fetchmail: not-affected (6.3.17-4ubuntu1)
raring_fetchmail: not-affected (6.3.17-4ubuntu1)
saucy_fetchmail: not-affected (6.3.17-4ubuntu1)
trusty_fetchmail: not-affected (6.3.17-4ubuntu1)
trusty/esm_fetchmail: DNE (trusty was not-affected [6.3.17-4ubuntu1])
utopic_fetchmail: not-affected (6.3.17-4ubuntu1)
vivid_fetchmail: not-affected (6.3.17-4ubuntu1)
devel_fetchmail: not-affected (6.3.17-4ubuntu1)