Information on source package alpine

Available versions

ReleaseVersion
stretch2.20+dfsg1-7
buster2.21+dfsg1-1.1
bullseye2.24+dfsg1-1
bookworm2.24+dfsg1-1
sid2.24+dfsg1-1

Open issues

BugstretchbusterbullseyebookwormsidDescription
CVE-2021-38370vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn Alpine through 2.24, untagged responses from an IMAP server are acc ...
CVE-2020-14929vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedAlpine before 2.23 silently proceeds to use an insecure connection aft ...

Resolved issues

BugDescription
CVE-2015-2305Integer overflow in the regcomp implementation in the Henry Spencer BS ...
CVE-2008-5514Off-by-one error in the rfc822_output_char function in the RFC822BUFFE ...
CVE-2008-5005Multiple stack-based buffer overflows in (1) University of Washington ...
CVE-2005-2933Buffer overflow in the mail_valid_net_parse_work function in mail.c fo ...
CVE-2005-1066Race condition in rpdump in Pine 4.62 and earlier allows local users t ...
CVE-2003-0721Integer signedness error in rfc2231_get_param from strings.c in PINE b ...
CVE-2003-0720Buffer overflow in PINE before 4.58 allows remote attackers to execute ...
CVE-2003-0297c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remo ...
CVE-2002-1903Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: a ...

Security announcements

DSA / DLADescription
DLA-2254-1alpine - security update

Search for package or bug name: Reporting problems