Date: Tue, 20 Mar 2001 13:28:47 +0100
From: [email protected]
To: [email protected]Subject: Trustix Security Advisory - mutt
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- --------------------------------------------------------------------------
Trustix Secure Linux Security Advisory #2001-0001
Package name: Mutt
Severity: Possible Remote Exploit
Date: 2001-03-16
Affected versions: TSL 1.2
- --------------------------------------------------------------------------
Problem description:
From the Mutt homepage:
This release fixes at least one grave IMAP error which may lead to
confusing display and other strangeness, and our instances of the
"wuftpd format bug", which had (mostly) the effect that your IMAP
server's operator could break into your computer with some work.
Mutt was introduced in TSL 1.2.
Action:
We recommend all systems which has this package installed to be upgraded.
Location:
All TSL updates are available from
<URL:http://www.trusix.net/pub/Trustix/updates/>;
<URL:ftp://ftp.trusix.net/pub/Trustix/updates/>;
Users of the SWUP tool, can enjoy having the security updates
automatically installed using 'swup --upgrade'.
Get SWUP from:
ftp://ftp.trustix.net/pub/Trustix/software/swup/
Questions?
Check out our mailinglists:
http://www.trustix.net/support/
Verification:
This advisory is signed with the TSL sign key. It is available from:
http://www.trustix.net/TSL-GPG-KEY
Trustix Security Team
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE6t0d1wRTcg4BxxS0RAj7vAJ9AcoO6MmTYv8ZO5Y4+bi/lELETzwCfcJe1
fBea+NmgMJnZCcN3xP6RJ2Q=
=xfPN
-----END PGP SIGNATURE-----
--
Trustix Secure Linux Advisor
Homepage: http://www.trustix.net/
Errata: http://www.trustix.net/errata/
Automatic updates: http://www.trustix.net/pub/Trustix/software/swup/
