Mandriva Linux Security Advisory : courier-authlib (MDVSA-2013:068)

High Nessus Plugin ID 66082


The remote Mandriva Linux host is missing one or more security updates.


When using the authpgsql module and if the Postgres server goes down, authpgsql will start leaking memory.

A packaging flaw was discovered that caused the courier-authlib-devel package to be installed when installing for example maildrop.

This update fixes both of these issues.


Update the affected packages.

See Also

Plugin Details

Severity: High

ID: 66082

File Name: mandriva_MDVSA-2013-068.nasl

Version: $Revision: 1.3 $

Type: local

Published: 2013/04/20

Modified: 2013/11/25

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:courier-authdaemon, p-cpe:/a:mandriva:linux:courier-authlib, p-cpe:/a:mandriva:linux:courier-authlib-devel, p-cpe:/a:mandriva:linux:courier-authlib-ldap, p-cpe:/a:mandriva:linux:courier-authlib-mysql, p-cpe:/a:mandriva:linux:courier-authlib-pgsql, p-cpe:/a:mandriva:linux:courier-authlib-userdb, cpe:/o:mandriva:business_server:1

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 2013/04/08

Reference Information

MDVSA: 2013:068