rpm package
suse/cyrus-imapd&distro=SUSE Linux Enterprise Server for SAP Applications 11 SP4
pkg:rpm/suse/cyrus-imapd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-8078 | — | < 2.3.11-60.65.67.1 | 2.3.11-60.65.67.1 | Dec 3, 2015 | Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the section_offset variable. NOTE: this vulnerability exists because of an | ||
| CVE-2015-8077 | — | < 2.3.11-60.65.67.1 | 2.3.11-60.65.67.1 | Dec 3, 2015 | Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the start_octet variable. NOTE: this vulnerability exists because of an inc | ||
| CVE-2015-8076 | — | < 2.3.11-60.65.67.1 | 2.3.11-60.65.67.1 | Dec 3, 2015 | The index_urlfetch function in index.c in Cyrus IMAP 2.3.x before 2.3.19, 2.4.x before 2.4.18, 2.5.x before 2.5.4 allows remote attackers to obtain sensitive information or possibly have unspecified other impact via vectors related to the urlfetch range, which triggers an out-of- | ||
| CVE-2014-3566 | Low | 3.4 | < 2.3.11-60.65.67.1 | 2.3.11-60.65.67.1 | Oct 15, 2014 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue. |
- CVE-2015-8078Dec 3, 2015affected < 2.3.11-60.65.67.1fixed 2.3.11-60.65.67.1
Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the section_offset variable. NOTE: this vulnerability exists because of an
- CVE-2015-8077Dec 3, 2015affected < 2.3.11-60.65.67.1fixed 2.3.11-60.65.67.1
Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the start_octet variable. NOTE: this vulnerability exists because of an inc
- CVE-2015-8076Dec 3, 2015affected < 2.3.11-60.65.67.1fixed 2.3.11-60.65.67.1
The index_urlfetch function in index.c in Cyrus IMAP 2.3.x before 2.3.19, 2.4.x before 2.4.18, 2.5.x before 2.5.4 allows remote attackers to obtain sensitive information or possibly have unspecified other impact via vectors related to the urlfetch range, which triggers an out-of-
- affected < 2.3.11-60.65.67.1fixed 2.3.11-60.65.67.1
The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.