-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 04 Sep 2014 12:08:36 +0200 Source: procmail Binary: procmail Architecture: source amd64 Version: 3.22-22 Distribution: unstable Urgency: high Maintainer: Santiago Vila <sanvila@debian.org> Changed-By: Santiago Vila <sanvila@debian.org> Description: procmail - Versatile e-mail processor Closes: 704675 760443 Changes: procmail (3.22-22) unstable; urgency=high . * Fixed heap overflow in formail that made it to crash on messages having specially-crafted headers. Closes: #704675, #760443. For reference, this is CVE-2014-3618. Checksums-Sha1: 43e8f9ff06b0572fcb8afd17083d124001c0f32f 1305 procmail_3.22-22.dsc 0a38ce2fe38b29804064fcb02fa580adc474cb13 18988 procmail_3.22-22.debian.tar.xz 5509fb7cb673011e787086972824c39789e1a95e 139360 procmail_3.22-22_amd64.deb Checksums-Sha256: 4aaba7cd7fcc41122776e40dd12f8e7b9349f2f859c58cc8c9b37b939d764def 1305 procmail_3.22-22.dsc 6db7a8d52790d67aa15d2dd300bd98de59f3b45c3bb3cab22aebaa7353c25aba 18988 procmail_3.22-22.debian.tar.xz cc36693da55d36efc728ce3ee4842148c3aca375cc00d1204509efedec365fe5 139360 procmail_3.22-22_amd64.deb Files: a4d93182abf78b6361f10269a83dcf2f 139360 mail standard procmail_3.22-22_amd64.deb e53bf80a6f27523350a1240bf8002c4c 1305 mail standard procmail_3.22-22.dsc 754c7bbf4dd3ca09abe6d160d5d18f2d 18988 mail standard procmail_3.22-22.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJUCDwUAAoJEEHOfwufG4syuigH/2+b8Ee7KYHe5kJXsXThKqjN wG113ERnOZ/AhzzExGBWxo/GTTBAwpdUgwi7wL0uuxuCZz1LTvqwEXvQ9/BXo446 0CVGe4M5rXmutjUnW9hIgLS2M0UGp1u+EmyF/xxo2JhW8JjfZoEVJ8rPBWfVtnub o1NWkenAzPuv1x1B/8mcKWjwFLJdNygB0NyKY5XqE/A/0dqx6r/5hqaacd64OSNO 5ZD2vVrboYfzHAk2WfFXfwT0bx/uI7tZH5OYTOjRUn8ImGBiM6YvbiofA0tvz6eT vOgIUsQPGpDCn+8vzYLC0QPVfU5XLWkUaHZkf5FOrW6Zy6yd2Cnwl3IwaxGVg8A= =lNxB -----END PGP SIGNATURE-----
