CVE-2009-0582

Common Vulnerabilities and Exposures

CVE-2009-0582 at MITRE

Details

The ntlm_challenge function in the NTLM SASL authentication mechanism in camel/camel-sasl-ntlm.c in Camel in Evolution Data Server (aka evolution-data-server) 2.24.5 and earlier, and 2.25.92 and earlier 2.25.x versions, does not validate whether a certain length value is consistent with the amount of data in a challenge packet, which allows remote mail servers to read information from the process memory of a client, or cause a denial of service (client crash), via an NTLM authentication type 2 packet with a length value that exceeds the amount of packet data.

Novell Bugzilla entry: 475541

SUSE Security Advisories:

SUSE-SR:2009:010 , published Tue, 12 May 2009 08:00:00 +0000

Product(s)	Fixed package version(s)	References
Novell Linux Desktop 9 for x86 Novell Linux Desktop 9 for x86_64	`evolution >= 2.0.4-0.17` `evolution-devel >= 2.0.4-0.17` `evolution-pilot >= 2.0.4-0.17`	sles9-nld. x86 sles9-nld. x86-64 YOU Patch Nr: 12392
openSUSE 11.1	`evolution-data-server-debuginfo >= 2.24.1.1-5.12.1` `evolution-data-server-debuginfo-32bit >= 2.24.1.1-5.12.1` `evolution-data-server-debugsource >= 2.24.1.1-5.12.1` `evolution-debuginfo >= 2.24.1.1-4.14.1` `evolution-debugsource >= 2.24.1.1-4.14.1` `evolution-mono-providers-debuginfo >= 0.1.1-2.18.1` `evolution-mono-providers-debugsource >= 0.1.1-2.18.1` `gtkhtml2-debuginfo >= 3.24.1.1-1.17.1` `gtkhtml2-debugsource >= 3.24.1.1-1.17.1`	SAT Patch Nr: 776
openSUSE 11.1	`evolution >= 2.24.1.1-4.14.1` `evolution-data-server >= 2.24.1.1-5.12.1` `evolution-data-server-32bit >= 2.24.1.1-5.12.1` `evolution-data-server-devel >= 2.24.1.1-5.12.1` `evolution-data-server-doc >= 2.24.1.1-5.12.1` `evolution-data-server-lang >= 2.24.1.1-5.12.1` `evolution-devel >= 2.24.1.1-4.14.1` `evolution-lang >= 2.24.1.1-4.14.1` `evolution-mono-providers >= 0.1.1-2.18.1` `evolution-pilot >= 2.24.1.1-4.14.1` `gtkhtml2 >= 3.24.1.1-1.17.1` `gtkhtml2-devel >= 3.24.1.1-1.17.1` `gtkhtml2-lang >= 3.24.1.1-1.17.1`	SAT Patch Nr: 776
SUSE Linux Enterprise Desktop 10 SP2 for x86 SUSE Linux Enterprise Server 10 SP2 for x86	`evolution-data-server >= 1.6.0-43.87` `evolution-data-server-devel >= 1.6.0-43.87`	sles10-sp2-debuginfo. x86 sles10-sp2-debuginfo. ia64 sles10-sp2. x86-64 sles10-sp2. s390x sles10-sp2. ppc sles10-sp2. ia64 sles10-sp2-debuginfo. x86-64 sled10-sp2. x86-64 sled10-sp2. x86 sles10-sp2. x86 sles10-sp2-debuginfo. s390x sles10-sp2-debuginfo. ppc ZYPP Patch Nr: 6166
SUSE Linux Enterprise 10 SP2 DEBUGINFO for AMD64 and Intel EM64T SUSE Linux Enterprise 10 SP2 DEBUGINFO for IBM POWER SUSE Linux Enterprise 10 SP2 DEBUGINFO for IBM zSeries 64bit SUSE Linux Enterprise 10 SP2 DEBUGINFO for IPF SUSE Linux Enterprise 10 SP2 DEBUGINFO for x86	`evolution-data-server-debuginfo >= 1.6.0-43.87`	sles10-sp2-debuginfo. x86 sles10-sp2-debuginfo. ia64 sles10-sp2. x86-64 sles10-sp2. s390x sles10-sp2. ppc sles10-sp2. ia64 sles10-sp2-debuginfo. x86-64 sled10-sp2. x86-64 sled10-sp2. x86 sles10-sp2. x86 sles10-sp2-debuginfo. s390x sles10-sp2-debuginfo. ppc ZYPP Patch Nr: 6166
SUSE Linux Enterprise Server 10 SP2 for IPF	`evolution-data-server >= 1.6.0-43.87` `evolution-data-server-devel >= 1.6.0-43.87` `evolution-data-server-x86 >= 1.6.0-43.87`	sles10-sp2-debuginfo. x86 sles10-sp2-debuginfo. ia64 sles10-sp2. x86-64 sles10-sp2. s390x sles10-sp2. ppc sles10-sp2. ia64 sles10-sp2-debuginfo. x86-64 sled10-sp2. x86-64 sled10-sp2. x86 sles10-sp2. x86 sles10-sp2-debuginfo. s390x sles10-sp2-debuginfo. ppc ZYPP Patch Nr: 6166
SUSE Linux Enterprise Server 10 SP2 for IBM POWER	`evolution-data-server >= 1.6.0-43.87` `evolution-data-server-64bit >= 1.6.0-43.87` `evolution-data-server-devel >= 1.6.0-43.87`	sles10-sp2-debuginfo. x86 sles10-sp2-debuginfo. ia64 sles10-sp2. x86-64 sles10-sp2. s390x sles10-sp2. ppc sles10-sp2. ia64 sles10-sp2-debuginfo. x86-64 sled10-sp2. x86-64 sled10-sp2. x86 sles10-sp2. x86 sles10-sp2-debuginfo. s390x sles10-sp2-debuginfo. ppc ZYPP Patch Nr: 6166
SUSE Linux Enterprise Desktop 10 SP2 for AMD64 and Intel EM64T SUSE Linux Enterprise Server 10 SP2 for AMD64 and Intel EM64T SUSE Linux Enterprise Server 10 SP2 for IBM zSeries 64bit	`evolution-data-server >= 1.6.0-43.87` `evolution-data-server-32bit >= 1.6.0-43.87` `evolution-data-server-devel >= 1.6.0-43.87`	sles10-sp2-debuginfo. x86 sles10-sp2-debuginfo. ia64 sles10-sp2. x86-64 sles10-sp2. s390x sles10-sp2. ppc sles10-sp2. ia64 sles10-sp2-debuginfo. x86-64 sled10-sp2. x86-64 sled10-sp2. x86 sles10-sp2. x86 sles10-sp2-debuginfo. s390x sles10-sp2-debuginfo. ppc ZYPP Patch Nr: 6166
openSUSE 10.3	`evolution-data-server >= 1.12.0-5.8` `evolution-data-server-32bit >= 1.12.0-5.8` `evolution-data-server-64bit >= 1.12.0-5.8` `evolution-data-server-devel >= 1.12.0-5.8` `evolution-data-server-doc >= 1.12.0-5.8`	ZYPP Patch Nr: 6171 SAT Patch Nr: 782
openSUSE 11.0	`evolution-data-server-debuginfo >= 2.22.1.1-11.4` `evolution-data-server-debugsource >= 2.22.1.1-11.4`	ZYPP Patch Nr: 6171 SAT Patch Nr: 782
openSUSE 11.0	`evolution-data-server >= 2.22.1.1-11.4` `evolution-data-server-32bit >= 2.22.1.1-11.4` `evolution-data-server-64bit >= 2.22.1.1-11.4` `evolution-data-server-devel >= 2.22.1.1-11.4` `evolution-data-server-doc >= 2.22.1.1-11.4`	ZYPP Patch Nr: 6171 SAT Patch Nr: 782
SLES 11 DEBUGINFO	`evolution-data-server-debuginfo >= 2.24.1.1-11.8.1` `evolution-data-server-debugsource >= 2.24.1.1-11.8.1` `evolution-debuginfo >= 2.24.1.1-15.8.4` `evolution-debugsource >= 2.24.1.1-15.8.4` `gtkhtml2-debuginfo >= 3.24.1.1-3.23.2` `gtkhtml2-debugsource >= 3.24.1.1-3.23.2`	sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sle11-debuginfo. ia64 sle11-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. ppc sle11-debuginfo. ia64 sle11-debuginfo. s390x sle11-debuginfo. x86 sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. x86 sle11-debuginfo. x86-64 SAT Patch Nr: 778
SLES 11 DEBUGINFO	`evolution-data-server-debuginfo >= 2.24.1.1-11.8.1` `evolution-data-server-debuginfo-x86 >= 2.24.1.1-11.8.1` `evolution-data-server-debugsource >= 2.24.1.1-11.8.1` `evolution-debuginfo >= 2.24.1.1-15.8.4` `evolution-debugsource >= 2.24.1.1-15.8.4` `gtkhtml2-debuginfo >= 3.24.1.1-3.23.2` `gtkhtml2-debugsource >= 3.24.1.1-3.23.2`	sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sle11-debuginfo. ia64 sle11-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. ppc sle11-debuginfo. ia64 sle11-debuginfo. s390x sle11-debuginfo. x86 sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. x86 sle11-debuginfo. x86-64 SAT Patch Nr: 778
SLES 11 DEBUGINFO	`evolution-data-server-debuginfo >= 2.24.1.1-11.8.1` `evolution-data-server-debuginfo-32bit >= 2.24.1.1-11.8.1` `evolution-data-server-debugsource >= 2.24.1.1-11.8.1` `evolution-debuginfo >= 2.24.1.1-15.8.4` `evolution-debugsource >= 2.24.1.1-15.8.4` `gtkhtml2-debuginfo >= 3.24.1.1-3.23.2` `gtkhtml2-debugsource >= 3.24.1.1-3.23.2`	sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sle11-debuginfo. ia64 sle11-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. ppc sle11-debuginfo. ia64 sle11-debuginfo. s390x sle11-debuginfo. x86 sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. x86 sle11-debuginfo. x86-64 SAT Patch Nr: 778
SLE 11	`evolution >= 2.24.1.1-15.8.4` `evolution-data-server-devel >= 2.24.1.1-11.8.1` `evolution-devel >= 2.24.1.1-15.8.4` `evolution-lang >= 2.24.1.1-15.8.4` `gtkhtml2-devel >= 3.24.1.1-3.23.2`	sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sle11-debuginfo. ia64 sle11-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. ppc sle11-debuginfo. ia64 sle11-debuginfo. s390x sle11-debuginfo. x86 sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. x86 sle11-debuginfo. x86-64 SAT Patch Nr: 778
SLED 11	`evolution >= 2.24.1.1-15.8.4` `evolution-data-server >= 2.24.1.1-11.8.1` `evolution-data-server-lang >= 2.24.1.1-11.8.1` `evolution-lang >= 2.24.1.1-15.8.4` `evolution-pilot >= 2.24.1.1-15.8.4` `gtkhtml2 >= 3.24.1.1-3.23.2` `gtkhtml2-lang >= 3.24.1.1-3.23.2`	sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sle11-debuginfo. ia64 sle11-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. ppc sle11-debuginfo. ia64 sle11-debuginfo. s390x sle11-debuginfo. x86 sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. x86 sle11-debuginfo. x86-64 SAT Patch Nr: 778
SLED 11	`evolution >= 2.24.1.1-15.8.4` `evolution-data-server >= 2.24.1.1-11.8.1` `evolution-data-server-32bit >= 2.24.1.1-11.8.1` `evolution-data-server-lang >= 2.24.1.1-11.8.1` `evolution-lang >= 2.24.1.1-15.8.4` `evolution-pilot >= 2.24.1.1-15.8.4` `gtkhtml2 >= 3.24.1.1-3.23.2` `gtkhtml2-lang >= 3.24.1.1-3.23.2`	sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sle11-debuginfo. ia64 sle11-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. ppc sle11-debuginfo. ia64 sle11-debuginfo. s390x sle11-debuginfo. x86 sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. x86 sle11-debuginfo. x86-64 SAT Patch Nr: 778
SLES 11	`evolution-data-server >= 2.24.1.1-11.8.1` `evolution-data-server-lang >= 2.24.1.1-11.8.1` `gtkhtml2 >= 3.24.1.1-3.23.2` `gtkhtml2-lang >= 3.24.1.1-3.23.2`	sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sle11-debuginfo. ia64 sle11-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. ppc sle11-debuginfo. ia64 sle11-debuginfo. s390x sle11-debuginfo. x86 sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. x86 sle11-debuginfo. x86-64 SAT Patch Nr: 778
SLES 11	`evolution-data-server >= 2.24.1.1-11.8.1` `evolution-data-server-lang >= 2.24.1.1-11.8.1` `evolution-data-server-x86 >= 2.24.1.1-11.8.1` `gtkhtml2 >= 3.24.1.1-3.23.2` `gtkhtml2-lang >= 3.24.1.1-3.23.2`	sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sle11-debuginfo. ia64 sle11-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. ppc sle11-debuginfo. ia64 sle11-debuginfo. s390x sle11-debuginfo. x86 sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. x86 sle11-debuginfo. x86-64 SAT Patch Nr: 778
SLES 11	`evolution-data-server >= 2.24.1.1-11.8.1` `evolution-data-server-32bit >= 2.24.1.1-11.8.1` `evolution-data-server-lang >= 2.24.1.1-11.8.1` `gtkhtml2 >= 3.24.1.1-3.23.2` `gtkhtml2-lang >= 3.24.1.1-3.23.2`	sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sle11-debuginfo. ia64 sle11-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. ppc sle11-debuginfo. ia64 sle11-debuginfo. s390x sle11-debuginfo. x86 sle11-debuginfo. s390x sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. x86 sle11-debuginfo. x86-64 SAT Patch Nr: 778