Hi All, I have obtained CVE-2017-14230 for the crasher in Cyrus up to 3.0.3 where: tag FIND "" "Other Users"
Would cause uninitialised memory to be written to a buffer which was then interpreted as an unbounded C string. This bug is fixed in 3.0.4, and we recommend everybody upgrade. Regards, Bron. -- Bron Gondwana, CEO, FastMail Pty Ltd br...@fastmailteam.com
---- Cyrus Home Page: http://www.cyrusimap.org/ List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/ To Unsubscribe: https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus
