dcsimg
Linux Today: Linux News On Internet Time.




More on LinuxToday


Trustix Security Advisory - mutt

Mar 20, 2001, 22:09 (2 Talkback[s])

Date: Tue, 20 Mar 2001 13:28:47 +0100
From: tsl@TRUSTIX.COM
To: BUGTRAQ@SECURITYFOCUS.COM
Subject: Trustix Security Advisory - mutt


Trustix Secure Linux Security Advisory #2001-0001

Package name:      Mutt
Severity:          Possible Remote Exploit
Date:              2001-03-16
Affected versions: TSL 1.2

Problem description:
  From the Mutt homepage:
    This release fixes at least one grave IMAP error which may lead to
    confusing display and other strangeness, and our instances of the
    "wuftpd format bug", which had (mostly) the effect that your IMAP
    server's operator could break into your computer with some work.
Mutt was introduced in TSL 1.2.

Action: We recommend all systems which has this package installed to be upgraded.

Location:
All TSL updates are available from
http://www.trusix.net/pub/Trustix/updates/
ftp://ftp.trusix.net/pub/Trustix/updates/

Users of the SWUP tool, can enjoy having the security updates automatically installed using 'swup --upgrade'.

Get SWUP from:
ftp://ftp.trustix.net/pub/Trustix/software/swup/

Questions?
Check out our mailinglists:
http://www.trustix.net/support/

Verification:
This advisory is signed with the TSL sign key. It is available from:
http://www.trustix.net/TSL-GPG-KEY

Trustix Security Team