CVE-2011-1947

fetchmail 5.9.9 through 6.3.19 does not properly limit the wait time after issuing a (1) STARTTLS or (2) STLS request, which allows remote servers to cause a denial of service (application hang) by acknowledging the request but not sending additional packets.

Date published : 2011-06-02

http://www.securityfocus.com/bid/48043

http://www.securityfocus.com/archive/1/518251/100/0/threaded