FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

cyrus-imapd -- integer overflow in the start_octet addition

Affected packages
2.5.0 <= cyrus-imapd25 < 2.5.7
2.4.0 <= cyrus-imapd24 < 2.4.18_2

Details

VuXML ID d62ec98e-97d8-11e5-8c0e-080027b00c2e
Discovery 2015-11-04
Entry 2015-12-01

Cyrus IMAP 2.5.7 Release Note states:

CVE-2015-8077, CVE-2015-8078: protect against integer overflow in urlfetch range checks

References

CVE Name CVE-2015-8077
CVE Name CVE-2015-8078
URL http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8078
URL http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-8077.html
URL http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-8078.html
URL https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8077
URL https://security-tracker.debian.org/tracker/CVE-2015-8077
URL https://security-tracker.debian.org/tracker/CVE-2015-8078