oss-sec mailing list archives

CVE request: urlfetch range handling flaw in Cyrus IMAP

From: Martin Prpic <mprpic () redhat com>
Date: Tue, 29 Sep 2015 13:01:28 +0200

Hi, was a CVE ID assigned for the following issue?

"Security fix: handle urlfetch range starting outside message range"
[https://docs.cyrus.foundation/imap/release-notes/2.4/x/2.4.18.html]

Not many details seem to be available about this issue. Any pointers to
a patch that fixes this would be greatly appreciated.

Thanks!

-- 
Martin Prpič / Red Hat Product Security

Current thread:

CVE request: urlfetch range handling flaw in Cyrus IMAP Martin Prpic (Sep 29)
- Re: CVE request: urlfetch range handling flaw in Cyrus IMAP Florian Weimer (Sep 30)