mutt (1.5.6-20040907+2ubuntu0.1) hoary-security; urgency=low
* SECURITY UPDATE: Remote arbitrary code execution with crafted long
namespace from malicous IMAP server.
* Add debian/patches/patch-git-browse_get_namespace-overflow.patch:
- Limit length of namespace received from IMAP server to avoid buffer
overflow.
- Patch taken from upstream git:
http://dev.mutt.org/cgi-bin/gitweb.cgi?p=mutt/.git;a=commit;
h=dc0272b749f0e2b102973b7ac43dbd3908507540
* References:
http://secunia.com/advisories/20810
-- Martin Pitt <email address hidden> Wed, 28 Jun 2006 10:32:46 +0000