Fedora 15 : cyrus-imapd-2.4.12-1.fc15 (2011-13860)

This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

- security fix :

- fixes incomplete authentication checks in nntpd
(Secunia SA46093)

- other fixed bugs :

- delayed delete can fail because of invalid names

- cyradm cannot wildcard delete ACLs from a mailbox

- Wrong ENABLE result (doubled names)

- mbpath output changed from 2.3 to 2.4 for remote
mailboxes

- xfer fails on unlimited quota (-1)

CVE-2011-3208 cyrus-imapd: nntpd buffer overflow in split_wildmats()

Bugs Fixed :

3495 P1 enhancement 2.4.10 Cyrus IMAP Improved duplicate suppression
3498 P1 bug 2.4.10 Cyrus IMAP quota command deletes users quota files
2772 P2 bug 2.4.x (next) Cyrus IMAP cmd_thread cores with bogus ids in
references header 3300 P3 bug 2.4.2 Cyrus IMAP SOL_TCP is not defined
on NetBSD 3439 P3 bug 2.3.16 Cyrus IMAP formatting issue on logging
(or memory corruption ?) 3454 P3 bug 2.4.8 Cyrus IMAP ID with unquoted
id_param_list keys not accepted 3463 P3 bug 2.4.x (next) Cyrus IMAP
Certain mails will crash imapd if using server side threading 3489 P3
bug 2.4.10 Cyrus IMAP 2.4.10 and quota problem 3491 P3 enhancement
2.4.10 Cyrus IMAP UNAUTHENTICATE and NOOP in timsieved 3492 P3 bug
2.4.10 Cyrus IMAP Add response codes to timsieved 3497 P3 bug 2.4.10
Cyrus IMAP In master/master.c:add_service the variable 'cmd' is set to
NULL before syslogging 3503 P3 bug 2.4.10 Cyrus IMAP DragonFly BSD
also require PIC objects for perl 3505 P3 bug 2.4.x (next) Cyrus IMAP
sync_reset is broken 3506 P3 bug 2.4.x (next) Cyrus IMAP dlist.c uses
synchronizing IMAP LITERALS without backchannel. 3507 P3 bug 2.4.x
(next) Cyrus IMAP Replication reconciliation fails in
default/immediate expunge mode 3526 P3 bug 2.4.10 Cyrus IMAP AFS
ptloader reinitialization uses local cell instead of afspts_mycell
config option 3532 P3 enhancement 2.5.x (next) Cyrus IMAP Fix file
descriptor cleanup 3279 P5 bug 2.4.2 Cyrus IMAP sync_client crashes
with empty mech_list before TLS starts 3451 P5 enhancement 2.4.8 Cyrus
IMAP config2header assume CC has no spaces

- rebuild to match db library update

- do not conflict with db4-utils

- rebuild to match db library update CVE-2011-3208
cyrus-imapd: nntpd buffer overflow in split_wildmats()

Bugs Fixed :

3495 P1 enhancement 2.4.10 Cyrus IMAP Improved duplicate suppression
3498 P1 bug 2.4.10 Cyrus IMAP quota command deletes users quota files
2772 P2 bug 2.4.x (next) Cyrus IMAP cmd_thread cores with bogus ids in
references header 3300 P3 bug 2.4.2 Cyrus IMAP SOL_TCP is not defined
on NetBSD 3439 P3 bug 2.3.16 Cyrus IMAP formatting issue on logging
(or memory corruption ?) 3454 P3 bug 2.4.8 Cyrus IMAP ID with unquoted
id_param_list keys not accepted 3463 P3 bug 2.4.x (next) Cyrus IMAP
Certain mails will crash imapd if using server side threading 3489 P3
bug 2.4.10 Cyrus IMAP 2.4.10 and quota problem 3491 P3 enhancement
2.4.10 Cyrus IMAP UNAUTHENTICATE and NOOP in timsieved 3492 P3 bug
2.4.10 Cyrus IMAP Add response codes to timsieved 3497 P3 bug 2.4.10
Cyrus IMAP In master/master.c:add_service the variable 'cmd' is set to
NULL before syslogging 3503 P3 bug 2.4.10 Cyrus IMAP DragonFly BSD
also require PIC objects for perl 3505 P3 bug 2.4.x (next) Cyrus IMAP
sync_reset is broken 3506 P3 bug 2.4.x (next) Cyrus IMAP dlist.c uses
synchronizing IMAP LITERALS without backchannel. 3507 P3 bug 2.4.x
(next) Cyrus IMAP Replication reconciliation fails in
default/immediate expunge mode 3526 P3 bug 2.4.10 Cyrus IMAP AFS
ptloader reinitialization uses local cell instead of afspts_mycell
config option 3532 P3 enhancement 2.5.x (next) Cyrus IMAP Fix file
descriptor cleanup 3279 P5 bug 2.4.2 Cyrus IMAP sync_client crashes
with empty mech_list before TLS starts 3451 P5 enhancement 2.4.8 Cyrus
IMAP config2header assume CC has no spaces

- rebuild to match db library update

- do not conflict with db4-utils

- rebuild to match db library update

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=729767
https://bugzilla.redhat.com/show_bug.cgi?id=736838
http://www.nessus.org/u?51e80815

Solution :

Update the affected cyrus-imapd package.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 6.5
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Fedora Local Security Checks

Nessus Plugin ID: 56486 ()

Bugtraq ID: 49534

CVE ID: CVE-2011-3208

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now