USN-3483-1: procmail vulnerability
USN-3483-1: procmail vulnerability Ubuntu Security Notice USN-3483-1 20th November, 2017 procmail vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.10 Ubuntu 17.04 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary formail could be made to crash or run programs if it processed specially crafted mail. Software description procmail – Versatile e-mail processor Details Jakub Wilk discovered that the formail tool incorrectly handled certainmalformed mail messages. An attacker could use this flaw to cause formailto crash, resulting in a denial of service, or possibly execute arbitrarycode. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 17.10: procmail 3.22-25ubuntu0.17.10.1 Ubuntu 17.04: procmail 3.22-25ubuntu0.17.04.1 Ubuntu 16.04 LTS: procmail 3.22-25ubuntu0.16.04.1 Ubuntu 14.04 LTS: procmail 3.22-21ubuntu0.2 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make [ more… ]