Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the section_offset variable. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8076.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2015-12-03 20:59
Updated : 2024-02-04 18:53
NVD link : CVE-2015-8078
Mitre link : CVE-2015-8078
CVE.ORG link : CVE-2015-8078
JSON object : View
Products Affected
cyrus
- imap
opensuse
- opensuse
- leap
CWE
CWE-189
Numeric Errors