thomas: doc/www/src/security kolab-vendor-notice-05.txt,NONE,1.1
cvs at intevation.de
cvs at intevation.de
Fri Oct 14 12:50:45 CEST 2005
Author: thomas
Update of /kolabrepository/doc/www/src/security
In directory doto:/tmp/cvs-serv24047
Added Files:
kolab-vendor-notice-05.txt
Log Message:
Added beginnings of kolab-vendor-notice-05.txt (curl)
--- NEW FILE: kolab-vendor-notice-05.txt ---
Kolab Security Issue 05 200510??
================================
Package: curl
Vulnerability: libcurl NTLM Buffer Overflow
Kolab Specific: no
Dependent Packages: clamav
Summary
-------
FIXME
Affected Versions
-----------------
OpenPKG packages of curl-FIXME earlier are affected.
Kolab Server 2.0.1 and previous releases of the 2.0 branch are affected.
You can check the installed version with:
/kolab/bin/openpkg rpm -q curl
Fixes
-----
FIXME
Install OpenPKG package curl-FIXME
Details
-------
http://curl.haxx.se/docs/security.html#BID15102
curl Security vendor page
http://www.securityfocus.com/bid/15102
Bugtraq ID 15102
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-3185
Common Vulnerabilities and Exposures (CVE): CAN-2005-3185
Timeline
--------
20051012 iDEFENSE Security Advisory [IDEF1202] posted to wget.general
20051013 vendor patch and fixed version published
200510?? Kolab update and security advisory published
More information about the commits
mailing list