Conectiva Linux Advisory: sendmailAug 31, 2003, 20:21 (0 Talkback[s])
CONECTIVA LINUX SECURITY ANNOUNCEMENT
Sendmail versions 8.12.8 and before (but only of the 8.12.x branch) have a remote vulnerability related to DNS maps. If such maps are being used, invalid DNS responses will make sendmail attempt to free incorrect memory areas, usually resulting in a crash. It has not been determined whether this vulnerability can be used to execute remote commands or not.
The packages supplied via this update contain a patch to fix this vulnerability.
Detailed instructions reagarding the use of apt and upgrade examples can be found at http://distro.conectiva.com.br/atualizacoes/#apt?idioma=en
All packages are signed with Conectiva's GPG key. The key and
instructions on how to import it can be found at
All our advisories and generic update instructions can be viewed at http://distro.conectiva.com.br/atualizacoes/?idioma=en
Copyright (c) 2003 Conectiva Inc.
0 Talkback[s] (click to add your comment)