|
Mandrake update for sendmail
|
|
Secunia Advisory:
|
SA9765
|
|
|
Release Date:
|
2003-09-18
|
|
Popularity:
|
6,667 views
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Mandrake Corporate Server 2.x
Mandrake Linux 8.x
Mandrake Linux 9.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
| CVE reference: | CVE-2003-0681
CVE-2003-0694
|
|
Description:
Mandrake has issued updated packages for sendmail. These fixes two vulnerabilities which possibly could allow malicious people to gain system access.
For more information:
SA9758
The other issue is a potential buffer overflow in the ruleset parsing. This may occur in non-standard ruleset configurations.
Solution:
Updated packages:
Corporate Server 2.1:
7870e3e3f35647266197194e933f5ed7 corporate/2.1/RPMS/Sendmail-8.12.6-3.5mdk.i586.rpm
3df2666ba0c7eef233a0060d799d86c4 corporate/2.1/RPMS/Sendmail-cf-8.12.6-3.5mdk.i586.rpm
e09d65fa52f14038643602d9c41ea72b corporate/2.1/RPMS/Sendmail-devel-8.12.6-3.5mdk.i586.rpm
6c580bbbc7212e13b2a27de1e727254d corporate/2.1/RPMS/Sendmail-doc-8.12.6-3.5mdk.i586.rpm
e9aa39db8dad6941af1e3a6e8c857cb5 corporate/2.1/SRPMS/Sendmail-8.12.6-3.5mdk.src.rpm
Mandrake Linux 8.2:
87a2d830b724bc67640ea4e267a60517 8.2/RPMS/Sendmail-8.12.1-4.5mdk.i586.rpm
b21c82a3f1b554aecd5227ab7269aea4 8.2/RPMS/Sendmail-cf-8.12.1-4.5mdk.i586.rpm
aed850225f1902657b02010a703d744c 8.2/RPMS/Sendmail-devel-8.12.1-4.5mdk.i586.rpm
aca8d9015390056de17b16db3fecc3e4 8.2/RPMS/Sendmail-doc-8.12.1-4.5mdk.i586.rpm
b0a8f5bbc575c2fc8b0dcaf2af00cbba 8.2/SRPMS/Sendmail-8.12.1-4.5mdk.src.rpm
Mandrake Linux 8.2/PPC:
993a8769ba667651e4319c27c9e82b7e ppc/8.2/RPMS/Sendmail-8.12.1-4.5mdk.ppc.rpm
6c9e501287a7eccec51b10dce7c6e6fb ppc/8.2/RPMS/Sendmail-cf-8.12.1-4.5mdk.ppc.rpm
e8d204f807ee1ea4a364fb4afdc24439 ppc/8.2/RPMS/Sendmail-devel-8.12.1-4.5mdk.ppc.rpm
cb695b306b372a540e363006adfc5f54 ppc/8.2/RPMS/Sendmail-doc-8.12.1-4.5mdk.ppc.rpm
b0a8f5bbc575c2fc8b0dcaf2af00cbba ppc/8.2/SRPMS/Sendmail-8.12.1-4.5mdk.src.rpm
Mandrake Linux 9.0:
7870e3e3f35647266197194e933f5ed7 9.0/RPMS/Sendmail-8.12.6-3.5mdk.i586.rpm
3df2666ba0c7eef233a0060d799d86c4 9.0/RPMS/Sendmail-cf-8.12.6-3.5mdk.i586.rpm
e09d65fa52f14038643602d9c41ea72b 9.0/RPMS/Sendmail-devel-8.12.6-3.5mdk.i586.rpm
6c580bbbc7212e13b2a27de1e727254d 9.0/RPMS/Sendmail-doc-8.12.6-3.5mdk.i586.rpm
e9aa39db8dad6941af1e3a6e8c857cb5 9.0/SRPMS/Sendmail-8.12.6-3.5mdk.src.rpm
Mandrake Linux 9.1:
abf1ad68f3835ce7f2593f935af97c95 9.1/RPMS/Sendmail-8.12.9-1.2mdk.i586.rpm
26427faee7bc48e521e370a7957865a7 9.1/RPMS/Sendmail-cf-8.12.9-1.2mdk.i586.rpm
a531c3ec3b6807428968254854d863b2 9.1/RPMS/Sendmail-devel-8.12.9-1.2mdk.i586.rpm
3e70938f6cb88c69f3a004c96b3ec347 9.1/RPMS/Sendmail-doc-8.12.9-1.2mdk.i586.rpm
1d575885387c5130d993d15cdfec56e5 9.1/SRPMS/Sendmail-8.12.9-1.2mdk.src.rpm
Mandrake Linux 9.1/PPC:
ff80af8ecc2af755689271c495cffed2 ppc/9.1/RPMS/Sendmail-8.12.9-1.2mdk.ppc.rpm
d29850a5cd7322d7d908a2c7299133ea ppc/9.1/RPMS/Sendmail-cf-8.12.9-1.2mdk.ppc.rpm
503d3aae07c0b8f707fd0f6187990dbd ppc/9.1/RPMS/Sendmail-devel-8.12.9-1.2mdk.ppc.rpm
10c1cb226d1e991eed8f974d1b62dc33 ppc/9.1/RPMS/Sendmail-doc-8.12.9-1.2mdk.ppc.rpm
1d575885387c5130d993d15cdfec56e5 ppc/9.1/SRPMS/Sendmail-8.12.9-1.2mdk.src.rpm
Provided and/or discovered by:
Timo Sirainen discovered the ruleset parsing vulnerability.
Other References:
SA9758:
http://secunia.com/advisories/9758/
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
