[SECURITY] Fedora 15 Update: fetchmail-6.3.20-1.fc15

updates at fedoraproject.org updates at fedoraproject.org
Tue Jun 21 17:24:01 UTC 2011 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2011-8011
2011-06-08 23:32:49
--------------------------------------------------------------------------------

Name        : fetchmail
Product     : Fedora 15
Version     : 6.3.20
Release     : 1.fc15
URL         : http://fetchmail.berlios.de/
Summary     : A remote mail retrieval and forwarding utility
Description :
Fetchmail is a remote mail retrieval and forwarding utility intended
for use over on-demand TCP/IP links, like SLIP or PPP connections.
Fetchmail supports every remote-mail protocol currently in use on the
Internet (POP2, POP3, RPOP, APOP, KPOP, all IMAPs, ESMTP ETRN, IPv6,
and IPSEC) for retrieval. Then Fetchmail forwards the mail through
SMTP so you can read it through your favorite mail client.

Install fetchmail if you need to retrieve mail over SLIP or PPP
connections.

--------------------------------------------------------------------------------
Update Information:

This update fixes CVE-2011-1947.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  7 2011 Vitezslav Crhonek <vcrhonek at redhat.com> - 6.3.20-1
- Update to fetchmail-6.3.20
* Thu Jun  2 2011 Vitezslav Crhonek <vcrhonek at redhat.com> - 6.3.19-5
- Fix CVE-2011-1947
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #709284 - CVE-2011-1947 fetchmail: Application hang due unguarded blocking I/O in IMAP/POP3 STARTTLS initialization (fetchmail-SA-2011-01)
        https://bugzilla.redhat.com/show_bug.cgi?id=709284
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update fetchmail' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list