1
Candidate: CVE-2015-8077
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8077
6
Integer overflow in the index_urlfetch function in imap/index.c in Cyrus
7
IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified
8
impact via vectors related to urlfetch range checks and the start_octet
9
variable. NOTE: this vulnerability exists because of an incomplete fix for
18
Patches_cyrus-imapd-2.4:
19
upstream: https://cyrus.foundation/cyrus-imapd/commit/?id=745e161c834f1eb6d62fc14477f51dae799e1e08
20
upstream_cyrus-imapd-2.4: needs-triage
21
precise_cyrus-imapd-2.4: ignored (reached end-of-life)
22
precise/esm_cyrus-imapd-2.4: DNE (precise was needs-triage)
23
trusty_cyrus-imapd-2.4: needs-triage
24
vivid_cyrus-imapd-2.4: ignored (reached end-of-life)
25
vivid/stable-phone-overlay_cyrus-imapd-2.4: DNE
26
vivid/ubuntu-core_cyrus-imapd-2.4: DNE
27
wily_cyrus-imapd-2.4: ignored (reached end-of-life)
28
xenial_cyrus-imapd-2.4: needs-triage
29
yakkety_cyrus-imapd-2.4: DNE
30
zesty_cyrus-imapd-2.4: DNE
31
artful_cyrus-imapd-2.4: DNE
32
bionic_cyrus-imapd-2.4: DNE
33
devel_cyrus-imapd-2.4: DNE
36
upstream: https://cyrus.foundation/cyrus-imapd/commit/?id=745e161c834f1eb6d62fc14477f51dae799e1e08
37
upstream_cyrus-imapd: released (2.5.7)
38
precise_cyrus-imapd: DNE
39
precise/esm_cyrus-imapd: DNE
40
trusty_cyrus-imapd: DNE
41
vivid_cyrus-imapd: ignored (reached end-of-life)
42
vivid/stable-phone-overlay_cyrus-imapd: DNE
43
vivid/ubuntu-core_cyrus-imapd: DNE
45
xenial_cyrus-imapd: DNE
46
yakkety_cyrus-imapd: not-affected (2.5.8-1)
47
zesty_cyrus-imapd: not-affected (2.5.8-1)
48
artful_cyrus-imapd: not-affected (2.5.8-1)
49
bionic_cyrus-imapd: not-affected (2.5.8-1)
50
devel_cyrus-imapd: not-affected (2.5.8-1)