[ This is the same issue as our earlier alert. -lt ed
]
From the redhat-announce list:
This is a security errata for the imap package that corrects a
known ipop2d exploit in Red Hat 4.x and Red Hat 5.x.
A more complete description of current problems with imap may be
found at
http://developer.redhat.com/bugzilla
by querying the imap component. Bug #3161 is the report of
ipop2d exploit.
Users of Red Hat Linux 4.x and 5.x should upgrade to the new
version of imap in order to correct this security problem.
Red Hat Linux 4.x:
——————
On alpha:
rpm -Uvh
ftp://updates.redhat.com/4.2/alpha/imap-4.5-0.4.2.alpha.rpm
On i386:
rpm -Uvh
ftp://updates.redhat.com/4.2/i386/imap-4.5-0.4.2.i386.rpm
On sparc:
rpm -Uvh
ftp://updates.redhat.com/4.2/sparc/imap-4.5-0.4.2.sparc.rpm
The source is available at
ftp://updates.redhat.com/4.2/SRPMS/imap-4.5-0.4.2.src.rpm
Red Hat Linux 5.x:
——————
On alpha:
rpm -Uvh
ftp://updates.redhat.com/5.2/alpha/imap-4.5-0.5.2.alpha.rpm
On i386:
rpm -Uvh
ftp://updates.redhat.com/5.2/i386/imap-4.5-0.5.2.i386.rpm
On sparc:
rpm -Uvh
ftp://updates.redhat.com/5.2/sparc/imap-4.5-0.5.2.sparc.rpm
The source is available at
ftp://updates.redhat.com/5.2/SRPMS/imap-4.5-0.5.2.src.rpm
These packages have all been PGP signed by Red Hat for
security.