Since this release is security related, allow me to announce here:
Updated cyrus-imapd-2.1.11-1 RPMs are available from
http://home.teleport.ch/simix/
rpm -Fvh ... is your friend.
-Simon
Rob Siemborski schrieb:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This is to announce the
If you care enough to post this question to the list, then you _should_
care enough to be subscribed to the list. If you are, then you should
have seen that new distros which fix the problem were released
yesterday.
Torge Szczepanek wrote:
Hi!
There was a posting on the bugtraq mailing
Harris Landgarten schrieb:
cyrus-sasl-2.1.9-1.src.rpm will not rebuild on Redhat 8
Correct. As my website states, I don't provide cyrus sasl V2 RPMs for
RedHat 7.x because sasl V2 is now included in = 8.0. If you really
need version 2.1.9, you could try to upgrade the existing RPM.
Simon
cyrus-sasl-2.1.9-1.src.rpm will not rebuild on Redhat 8
this is the error:
Remember to add `AC_PROG_LIBTOOL' to `configure.in'.
You should update your `aclocal.m4' by running aclocal.
Putting files in AC_CONFIG_AUX_DIR, `config'.
+ aclocal -I ./config -I ./cmulocal
+ automake -a
I'm trying to compile cyrus-imapd 2.1.11(even with
2.1.09 and 2.1.10), and when I run the tools/mkimap
during the install process where it says to, I get the
following error message:
can't open /etc/imapd.conf at (eval 1) line 15, DATA
line 82.
every single time. I have a /etc/imapd.conf(with the
--On Thursday, December 05, 2002 10:22 PM +0300 Oleg Derevenetz
[EMAIL PROTECTED] wrote:
When some pop3d dies with signal (i.e. SIGTERM), all incoming connections
to corresponding address:port are hangs. For example, if I have pop3d
I can confirm that the same bug exists under Solaris 8 x86
On Thu, 5 Dec 2002, Carson Gaspar wrote:
When some pop3d dies with signal (i.e. SIGTERM), all incoming
connections to corresponding address:port are hangs. For example, if I
have pop3d
I can confirm that the same bug exists under Solaris 8 x86 (fully patched)
with imapd. To reproduce:
Hi,
Regarding the recently announced vulnerability
http://online.securityfocus.com/archive/1/301864/2002-11-29/2002-12-05/0
Does a similar vulnerability exist with literals after login?
Thank you.
Saira Hasnain
Its the same parsing code (with one or two exceptions).
I don't see why it existing with literals after login would concern you if
it didn't concern you before login.
Of course, they are properly limited in 2.1.11 and 2.0.17.
-Rob
On Thu, 5 Dec 2002 [EMAIL PROTECTED] wrote:
Hi,
Regarding
Hi,
I have the following error in Cyrus-Postfix, that I do not know how to
fix:
Dec 5 23:03:25 Hades postfix/lmtp[16388]: 04316100F:
to=[EMAIL PROTECTED], relay=public/lmtp[public/lmtp],
delay=21490, status=deferred (host public/lmtp[public/lmtp] said: 451
4.3.0 System I/O error)
Dec 5
--On Thursday, December 05, 2002 4:58 PM -0500 Rob Siemborski
[EMAIL PROTECTED] wrote:
This isn't good enough for me to reproduce it.
I have tried both with preforking and without preforking.
I cannot get 2.1.11 to behave like this on Solaris 8.
Master didn't change since 2.1.10 so I don't
Is 2.2 CVS builds affected by this exploit?
Rob Siemborski wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This is to announce the release of Cyrus IMAPd 2.0.17 and 2.1.11 on
ftp.andrew.cmu.edu.
These releases correct the pre-login buffer overflow vulnerabilities
recently mentioned on
Hi,
I noticed that deliver does not deliver mails if run from the shell. Is
this normal? If not, what might I try to fix that?
I am running SuSE 8.0, Postfix and Cyrus.
Thanks in Advance,
Christoph Burger-Scheidlin
### cyrus.conf
# standard standalone server implementation
START {
# do not
Christoph Burger-Scheidlin wrote:
Hi,
I have the following error in Cyrus-Postfix, that I do not know how to
fix:
Dec 5 23:03:25 Hades postfix/lmtp[16388]: 04316100F:
to=, relay=public/lmtp[public/lmtp],
delay=21490, status=deferred (host public/lmtp[public/lmtp] said: 451
4.3.0 System I/O
Yes, but since it's unreleased we don't really bother announcing that.
The patch has obviously been moved forward to the 2.2 branch as well.
-Rob
On Thu, 5 Dec 2002, Kervin Pierre wrote:
Is 2.2 CVS builds affected by this exploit?
Rob Siemborski wrote:
-BEGIN PGP SIGNED MESSAGE-
Hi,
What is local_transport set to in your main.cf?
Local transport is not set, I thought mailbox_transport should do:
mailbox_transport = lmtp:unix:public/lmtp
Christoph Burger-Scheidlin
Hello,
I've got a few linux systems running cyrus imap 2.1.11 source compiles a
few running Henrique de Moraes Holschuh's debian sid packages. I'm use
sasldb2 (cyrus sasl 2.1.9) for authentication.
I notice when my users supply the wrong password to imapd, messages are
written to syslog
Rob Siemborski [EMAIL PROTECTED] writes:
On Tue, 3 Dec 2002, Nels Lindquist wrote:
On 3 Dec 2002 at 9:57, Steve Wright wrote:
The message below is forwarded from bugtraq.
I've not seen any discussion of this, is an official fix available ?
The semi-exploit shown does indeed segfault
Updated Debian packages of 2.1.10 with all security patches are already
available, since yesterday.
2.1.11 was uploaded to Debian unstable and will be installed today. I may
backport 2.1.11 to Debian stable soon (or not), since ALL the security fixes
have been already backported to
Carson Gaspar wrote:
--On Thursday, December 05, 2002 10:22 PM +0300 Oleg Derevenetz
[EMAIL PROTECTED] wrote:
When some pop3d dies with signal (i.e. SIGTERM), all incoming connections
to corresponding address:port are hangs. For example, if I have pop3d
I can confirm that the same
This is probably more a berkeley DB question, but I'm wondering if anyone
else has seen this. Every now and then we see this in our imap log.
Dec 5 20:39:47 server2 lmtpd[24962]: DBERROR db3: Unable to allocate 4151
bytes from mpool shared region: Cannot allocate memory
Dec 5 20:39:47 server2
Christian Schulte wrote:
Ken Murchison wrote:
Christian Schulte wrote:
Ken Murchison wrote:
Christian Schulte wrote:
Ken Murchison wrote:
Christian Schulte wrote:
Hi,
I am running 2_2 cvs branch with virtual domain support turned on and
--On Friday, December 06, 2002 1:09 PM +1100 Rob Mueller [EMAIL PROTECTED]
wrote:
This is probably more a berkeley DB question, but I'm wondering if anyone
else has seen this. Every now and then we see this in our imap log.
Dec 5 20:39:47 server2 lmtpd[24962]: DBERROR db3: Unable to allocate
It looks like this is legacy SASLv1 code which wasn't ported. Try this
patch:
http://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/cyrus/imap/pop3d.c.diff?r1=1.129r2=1.130
steve wright wrote:
Hello,
I've got a few linux systems running cyrus imap 2.1.11 source compiles a
few running
24 matches
Mail list logo