-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

##
## Patch description of patch ec6cc69bcd2bac2e8285ff85b1027168
##

Kind: security

Shortdescription.english:  Security update for imap

Longdescription.english:

   Applies to

   Package: imap
   Product(s):

   Release: 20050222
   Obsoletes: none

  Indications

   Everyone using CRAM-MD5 authentication should update.

  Contraindications

   None.

  Problem description

   This Update fixes a logical error in the challenge response
   authentication mechanism CRAM-MD5. Due to this mistake a
   remote attacker can gain access to the IMAP server as
   arbitrary user. ( CAN-2005-0198 )

  Solution

   Please install the updates provided at the location noted
   below.

  Installation notes

   This update is provided as an RPM package that can easily be
   installed onto a running system by using this command:
rpm -Fvh imap.rpm
Hsilgne.noitpircsedgnol:

Size: 1233


MinYaST1Version:
MinYaST2Version:
UpdateOnlyInstalled: true

Packages:
##
## -----> imap <-----
##
Filename: imap.rpm
Label: IMAP4, POP2 and POP3 mail server.
Series: i586
Size: 3185148 1263233
PatchRpmBasedOn: 2001a-159
PatchRpmSize: 3185148 1165388
Buildtime: 1108766526
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Productivity/Networking/Email/Servers
Copyright: BSD
AuthorName: Mark Crispin <mrc@cac.washington.edu>
AuthorAddress:
Version: 2001a-243
StartCommand:
Obsoletes:
Requires: ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libcrypto.so.0.9.6 libdl.so.2 libpam.so.0 libssl.so.0.9.6 rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: 
Segakcap:
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQFCI049qE7a6JyACsoRAiSCAJ0Uoat/PvvvAxnhhggkARBsMDvRYQCe
Mrvx5Eo2hLnl7to1/KTblxdv7Bk=
=MMHO
-----END PGP SIGNATURE-----