SASL Authentication Failure & Postfix

Biswatosh biswatosh2001 at yahoo.com
Tue Oct 3 03:40:06 EDT 2006


Hi, 

Any info on  CVE-2006-1721 (titled  Cyrus SASL Remote
Digest-MD5 Denial of Service Vulnerability) ?
See:
http://www.securityfocus.com/bid/17446/info 

As I see, the current version has the problem fixed.
I am interested in knowing :

1)The Bug Id, by which can see about the Bug.

2)If Bug Id is not there, any idea, what was the exact
problem in digestmd5.c and how was it solved?

3)It looks this problem was in version 2.1.18. Which
version fixed it?


Thanks
Biswatosh

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 


More information about the Cyrus-sasl mailing list