Moderate: ruby security update
Security Advisory: Moderate
Updated ruby packages that fix multiple security issues are now availablefor Red Hat Enterprise Linux 4 and 5This update has been rated as having moderate security impact by the RedHat Security Response Team
Gaetan Leurent discovered a vulnerability in the APOP protocol based
on MD5 collisions As fetchmail supports the APOP protocol, this
vulnerability can be used by attackers to discover a portion of the APOP
user’s authentication credentials (CVE-2007-1558) ...
Security Vulnerability in APOP Authentication
May 30, 2007
Gaëtan Leurent showed a weakness in APOP authentication An attacker
posing as a trusted server could recover portions of the user’s
password via multiple authentication attempts (CVE-2007-1558) ...
Several remote vulnerabilities have been discovered in the Icedove mail client,
an unbranded version of the Thunderbird client The Common Vulnerabilities and
Exposures project identifies the following problems:
Gatan Leurent discovered a cryptographical weakness in APOP
authentication, which reduces the required efforts for ...
Several remote vulnerabilities have been discovered in the Iceape internet
suite, an unbranded version of the Seamonkey Internet Suite The Common
Vulnerabilities and Exposures project identifies the following problems:
Nicolas Derouet discovered that Iceape performs insufficient
validation of cookies, which could lead to den ...