This denial-of-service vulnerability has been known as CVE-2011-1947 for a while, and got fixed in a later fetchmail release (see above - but note that 6.3.22 fixes even more security bugs)
** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-1947 ** Summary changed: - fetchmail-6.3.9-rc2-4ubuntu5 hangs in SSL handshake on DSL connection + fetchmail-6.3.9-rc2-4ubuntu5 hangs in S(TART)TLS handshake/CVE-2011-1947 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/733980 Title: fetchmail-6.3.9-rc2-4ubuntu5 hangs in S(TART)TLS handshake/CVE-2011-1947 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/fetchmail/+bug/733980/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
