LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 24, 2012

A uTouch architecture introduction

LWN.net Weekly Edition for May 17, 2012

Tasting the Ice Cream Sandwich

Highlights from the PostgreSQL 9.2 beta

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

sendmail - buffer overrun

Package(s):sendmail CVE #(s):CAN-2003-0161
Created:March 31, 2003 Updated:April 30, 2003
Description: There is yet another buffer overrun in sendmail; this one was discovered by Michal Zalewski. From the CERT Advisory: "There is a vulnerability in sendmail that can be exploited to cause a denial-of-service condition and could allow a remote attacker to execute arbitrary code with the privileges of the sendmail daemon, typically root." Sendmail 8.12.9 was released with a fix for the problem.
Alerts:
Conectiva CLA-2003:614 2003-04-04
Debian DSA-290-1 2003-04-17
Yellow Dog YDU-20030409-1 2003-04-09
Conectiva CLA-2003:614 2003-04-04
Debian DSA-278-2 2003-04-04
Debian DSA-278-1 2003-04-04
SCO Group CSSA-2003-016.0 2003-04-03
Immunix IMNX-2003-7+-002-01 2003-03-31
Mandrake MDKSA-2003:042 2003-04-01
SuSE SuSE-SA:2003:023 2003-04-01
Red Hat RHSA-2003:120-01 2003-03-31
Gentoo 200303-27 2003-03-31
Slackware sl-1049038109 2003-03-30
OpenPKG OpenPKG-SA-2003.027 2003-03-30
(Log in to post comments)

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds