Mandrake Linux Security Advisory : pine (MDKSA-2002:084)
Medium Nessus Plugin ID 13982
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionA vulnerability was discovered in pine while parsing and escaping characters of email addresses; not enough memory is allocated for storing the escaped mailbox part of the address. The resulting buffer overflow on the heap makes pine crash. This new version of pine, 4.50, has the vulnerability fixed. It also offers many other bug fixes and new features.
SolutionUpdate the affected pine package.