CVE-2008-2711

Description

fetchmail 6.3.8 and earlier, when running in -v -v (aka verbose) mode, allows remote attackers to cause a denial of service (crash and persistent mail failure) via a malformed mail message with long headers, which triggers an erroneous dereference when using vsnprintf to format log messages.

Affected packages (1)

• Debian/fetchmailfrom 0, < 6.3.9~rc2-1

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-2711