CVE-2009-2632

NameCVE-2009-2632
DescriptionBuffer overflow in the SIEVE script component (sieve/script.c), as used in cyrus-imapd in Cyrus IMAP Server 2.2.13 and 2.3.14, and Dovecot 1.0 before 1.0.4 and 1.1 before 1.1.7, allows local users to execute arbitrary code and read or modify arbitrary messages via a crafted SIEVE script, related to the incorrect use of the sizeof operator for determining buffer length, combined with an integer signedness error.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-1881-1, DSA-1892-1, DSA-1893-1
NVD severitymedium (attack range: local)
Debian Bugs546656, 547712

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
dovecot (PTS)wheezy, wheezy (security)1:2.1.7-7+deb7u1fixed
jessie (security), jessie1:2.2.13-12~deb8u3fixed
stretch1:2.2.27-3+deb9u1fixed
buster, sid1:2.2.33.2-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
cyrus-imapd-2.2source(unstable)2.2.13-15medium
cyrus-imapd-2.2sourceetch2.2.13-10+etch4mediumDSA-1893-1
cyrus-imapd-2.2sourcelenny2.2.13-14+lenny3mediumDSA-1893-1
dovecotsource(unstable)1:1.2.1-1medium546656
dovecotsourceetch1.0.rc15-2etch5mediumDSA-1892-1
dovecotsourcelenny1:1.0.15-2.3+lenny1mediumDSA-1892-1
kolab-cyrus-imapdsource(unstable)2.2.13-5.1medium547712
kolab-cyrus-imapdsourceetch2.2.13-2+etch2mediumDSA-1893-1
kolab-cyrus-imapdsourcelenny2.2.13-5+lenny2mediumDSA-1893-1

Search for package or bug name: Reporting problems