Debian Security Advisory: New version of nmh releasedFeb 28, 2000, 17:54 (0 Talkback[s])
(Other stories by Wichert Akkerman)
Date: Mon, 28 Feb 2000 18:38:04 +0100
Debian Security Advisory firstname.lastname@example.org
http://www.debian.org/security/ Wichert Akkerman
February 28, 2000
Vulnerability type: remote exploit
The version of nmh that was distributed in Debian GNU/Linux 2.1 (aka slink) did not check incoming mail messages properly. This could be exploited by using carefully designed MIME headers to trick mhshow into executing arbitrary shell code.
This has been fixed in version 0.27-0.28-pre8-4. We recommend you upgrade your nmh package immediately.
Debian GNU/Linux 2.1 alias slink
This version of Debian was released only for Intel ia32, the Motorola 680x0, the alpha and the Sun sparc architecture.
Intel ia32 architecture:
Motorola 680x0 architecture:
Sun Sparc architecture:
These files will be moved into
For not yet released architectures please refer to the
For apt-get: deb http://security.debian.org/ stable updates
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates
Mailing list: email@example.com
0 Talkback[s] (click to add your comment)