-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 As it's now allready on the air, you all may want to have a look at Dustin Childers info about the bug (including a patch)
http://www.digitux.net/security/advisories.html?id=34&display=info My advice is it, to update NOW. The error gives an all too easy DOS. Ahem, and of course SuSE is also vulnerable, if qpopper is used. I reproduced the error on a SuSE 7.3 with qpopper 4.0.3. Don't know about the older versions, but as I see it, the error is a classical program-bug and therefore independant on the OS used (but perhaps very old qpopper versions may not be affected - check your source). Greetings - -- Michael Zimmermann (Vegaa Safety and Security for Internet Services) <[EMAIL PROTECTED]> phone +49 89 6283 7632 hotline +49 163 823 1195 Key fingerprint = 1E47 7B99 A9D3 698D 7E35 9BB5 EF6B EEDB 696D 5811 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE8lPog72vu22ltWBERAtxsAJ0dfgc9pUmnRA1tjis44sX+2L7V7gCfR44o Ot2R6f+Y80bWoPWbpgcQG5g= =T466 -----END PGP SIGNATURE-----
