Hello again from Gregg C Levine Thanks Mark. I had forgotten that our friends at Slackware keep an eye out, on things like that. I'll be very sure to take care of that one. ------------------- Gregg C Levine [EMAIL PROTECTED] ------------------------------------------------------------ "The Force will be with you...Always." Obi-Wan Kenobi "Use the Force, Luke."� Obi-Wan Kenobi (This company dedicates this E-Mail to General Obi-Wan Kenobi ) (This company dedicates this E-Mail to Master Yoda )
> -----Original Message----- > From: Linux on 390 Port [mailto:[EMAIL PROTECTED] On Behalf Of > Post, Mark K > Sent: Monday, March 03, 2003 8:18 PM > To: [EMAIL PROTECTED] > Subject: [LINUX-390] FW: [slackware-security] Sendmail buffer overflow fixed > > Another security alert. Anyone running sendmail should upgrade or apply the > patch from the URL below. The sendmail web page describes this as a > "critical security problem." > > Mark Post > > -----Original Message----- > From: Slackware Security Team [mailto:[EMAIL PROTECTED] > Sent: Monday, March 03, 2003 5:25 PM > To: [EMAIL PROTECTED] > Subject: [slackware-security] Sendmail buffer overflow fixed > > > [slackware-security] Sendmail buffer overflow fixed > > The sendmail packages in Slackware 8.1 and -current have been patched to fix > a security problem. All sites running sendmail should upgrade. > > More information on the problem can be found here: > > http://www.sendmail.org/8.12.8.html > > Here are the details from the Slackware 8.1 ChangeLog: > +--------------------------+ > Mon Mar 3 10:29:01 PST 2003 > patches/packages/sendmail-8.12.8-i386-1.tgz: Upgraded to sendmail-8.12.8. > From sendmail's RELNOTES: > SECURITY: Fix a remote buffer overflow in header parsing by dropping > sender > and recipient header comments if the comments are too long. Problem > noted > by Mark Dowd of ISS X-Force. > (* Security fix *) > patches/packages/sendmail-cf-8.12.8-noarch-1.tgz: Updated config files for > sendmail-8.12.8. > +--------------------------+
