Synopsis: Important: procmail security update
Advisory ID: SLSA-2017:3269-1
Issue Date: 2017-11-29
CVE Numbers: CVE-2017-16844
—
Security Fix(es):
* A heap-based buffer overflow flaw was found in procmail’s formail
utility. A remote attacker could send a specially crafted email that, when
processed by formail, could cause formail to crash or, possibly, execute
arbitrary code as the user running formail. (CVE-2017-16844)
—
SL7
x86_64
procmail-3.22-36.el7_4.1.x86_64.rpm
procmail-debuginfo-3.22-36.el7_4.1.x86_64.rpm
– Scientific Linux Development Team
