On Wed, 12 Oct 2005, Chris L. Franklin wrote: > Davide Libenzi wrote: > >> There is a possible buffer overflow vulnerability in all versions of XMail >> previous to 1.22. This does not affect the server itself, but the XMail's >> sendmail binary. Since many runs the XMail's sendmail as suid root, the >> issue can be critical, even if not easily exploitable w/out knowing the >> server setup. I'd suggest everyone to update to 1.22 ASAP: >> >> http://www.xmailserver.org >> >> >> >> PS: Mitre has assigned CAN-2005-2943 to this issue. >> >> >> - Davide >> >> >> - >> To unsubscribe from this list: send the line "unsubscribe xmail" in >> the body of a message to [EMAIL PROTECTED] >> For general help: send the line "help" in the body of a message to >> [EMAIL PROTECTED] >> >> >> > When doing a rpm upgrade I now get this error, any reason ? > > error: Failed dependencies: > linux-gate.so.1 is needed by xmail-1.22-1.i386 > > > Ps. I did NOT get this with prior versions.
I think RPM-build scripts on Debian failed to remove the virtual dependency from linux-gate.so.1. This is not supposed to exist: http://www.trilithium.com/johan/2005/08/linux-gate/ But the dependency builder did not filter it out. Just build binaries from scratch until they fix RPM scripts. - Davide - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED]
