I noticed Caldera released a patch for mail today on Bugtraq.
"This security fix closes Caldera's internal Problem Report 9327."
http://www.securityfocus.com/archive/1/166232
Quite the coincidence.
Here's the vuln-dev thread:
http://securityfocus.com/templates/archive.pike?fromthread=1&list=82&threads=1&mid=165918&end=2001-03-03&start=2001-02-25&;
Seems that perhaps SosPiro should have been mentioned. I realize that
vuln-dev doesn't exactly give vendors advanced notice due to the
way it works, but still...
BB
