Updated Pan packages that close a denial of service vulnerability are now available.
Pan is a Gnome/GTK+ newsreader. A bug in Pan versions prior to 0.13.4 can cause Pan to crash when parsing an article header containing a very long author email address. This bug causes a denial of service (crash), but cannot be exploited further. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-0855 to this issue. Users of Pan are advised to upgrade to these erratum packages, which contain a backported patch correcting this issue. Red Hat would like to thank Kasper Dupont for alerting us to this issue and to Charles Kerr for providing the patch.
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center