Debian: DSA-1728-1: New dkim-milter packages fix denial of service

    Date27 Feb 2009
    CategoryDebian
    225
    Posted ByLinuxSecurity Advisories
    It was discovered that dkim-milter, an implementation of the DomainKeys Identified Mail protocol, may crash during DKIM verification if it encounters a specially-crafted or revoked public key record in DNS.
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1
    
    - ------------------------------------------------------------------------
    Debian Security Advisory DSA-1728-1                  This email address is being protected from spambots. You need JavaScript enabled to view it.
    http://www.debian.org/security/                           Florian Weimer
    February 27, 2009                     http://www.debian.org/security/faq
    - ------------------------------------------------------------------------
    
    Package        : dkim-milter
    Vulnerability  : improper assertion
    Problem type   : remote
    Debian-specific: no
    
    It was discovered that dkim-milter, an implementation of the DomainKeys
    Identified Mail protocol, may crash during DKIM verification if it
    encounters a specially-crafted or revoked public key record in DNS.
    
    The old stable distribution (etch) does not contain dkim-milter packages.
    
    For the stable distribution (lenny), this problem has been fixed in
    version 2.6.0.dfsg-1+lenny1.
    
    For the unstable distribution (sid), this problem has been fixed in
    version 2.6.0.dfsg-2.
    
    We recommend that you upgrade your dkim-milter packages.
    
    Upgrade instructions
    - --------------------
    
    wget url
            will fetch the file for you
    dpkg -i file.deb
            will install the referenced file.
    
    If you are using the apt-get package manager, use the line for
    sources.list as given below:
    
    apt-get update
            will update the internal database
    apt-get upgrade
            will install corrected packages
    
    You may use an automated update by adding the resources from the
    footer to the proper configuration.
    
    
    Debian GNU/Linux 5.0 alias lenny
    - --------------------------------
    
    Source archives:
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-milter_2.6.0.dfsg-1+lenny1.dsc
        Size/MD5 checksum:     1125 c695a2adc00497bd3e531f702fdad6c5
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-milter_2.6.0.dfsg-1+lenny1.diff.gz
        Size/MD5 checksum:    11222 5eeb15993844159a99aa7efad6a4457f
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-milter_2.6.0.dfsg.orig.tar.gz
        Size/MD5 checksum:   554381 a9520ac897c00f100d2b9036f97e925d
    
    alpha architecture (DEC Alpha)
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim-dev_2.6.0.dfsg-1+lenny1_alpha.deb
        Size/MD5 checksum:   106174 64fd75abaae625b4fe4f5e5e77803137
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim2_2.6.0.dfsg-1+lenny1_alpha.deb
        Size/MD5 checksum:    74756 46e35d1d8c3d1cd0cfe1ab7a87a0b1e5
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-filter_2.6.0.dfsg-1+lenny1_alpha.deb
        Size/MD5 checksum:   263692 c150425e62a8c42d22f112c46d340dc2
    
    amd64 architecture (AMD x86_64 (AMD64))
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-filter_2.6.0.dfsg-1+lenny1_amd64.deb
        Size/MD5 checksum:   259706 5230d1c37c8598a034bb8dc2970e865e
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim2_2.6.0.dfsg-1+lenny1_amd64.deb
        Size/MD5 checksum:    74416 b01065c6aed363c50281c2949e39beed
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim-dev_2.6.0.dfsg-1+lenny1_amd64.deb
        Size/MD5 checksum:    90920 bef1f1041ef224e20d954212f1d74e89
    
    arm architecture (ARM)
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim-dev_2.6.0.dfsg-1+lenny1_arm.deb
        Size/MD5 checksum:    87692 14c39e403fec43a55b69f2e304050e2a
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim2_2.6.0.dfsg-1+lenny1_arm.deb
        Size/MD5 checksum:    69962 b4830076fdda43d2a4db796d633db4fe
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-filter_2.6.0.dfsg-1+lenny1_arm.deb
        Size/MD5 checksum:   246112 58cb873f1036c18e460053dbcaa9e76a
    
    armel architecture (ARM EABI)
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-filter_2.6.0.dfsg-1+lenny1_armel.deb
        Size/MD5 checksum:   245366 ebbb7ddd6a2c8cccab7e099e96413c85
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim2_2.6.0.dfsg-1+lenny1_armel.deb
        Size/MD5 checksum:    69040 29891d1857f34bce97b6b0c965020619
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim-dev_2.6.0.dfsg-1+lenny1_armel.deb
        Size/MD5 checksum:    88818 0f2504c45da3b1919bc3ef59de880b38
    
    i386 architecture (Intel ia32)
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim-dev_2.6.0.dfsg-1+lenny1_i386.deb
        Size/MD5 checksum:    89048 3413f284eb34cc2d74496f707cd9f852
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim2_2.6.0.dfsg-1+lenny1_i386.deb
        Size/MD5 checksum:    71414 6b5cceb3b9e42729950197054757264d
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-filter_2.6.0.dfsg-1+lenny1_i386.deb
        Size/MD5 checksum:   248094 7aedd3ad014a4e10294e475230b00080
    
    ia64 architecture (Intel ia64)
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim2_2.6.0.dfsg-1+lenny1_ia64.deb
        Size/MD5 checksum:    92120 f73c905f2613b8aafabbf5a948429cea
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim-dev_2.6.0.dfsg-1+lenny1_ia64.deb
        Size/MD5 checksum:   115088 b4769e6be121b6ae912ad27193b02809
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-filter_2.6.0.dfsg-1+lenny1_ia64.deb
        Size/MD5 checksum:   347570 7b98b7f6cfc281d72393e3f648a26736
    
    mips architecture (MIPS (Big Endian))
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim2_2.6.0.dfsg-1+lenny1_mips.deb
        Size/MD5 checksum:    69302 745bb19092981898f9a4bbf92bc7d9db
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim-dev_2.6.0.dfsg-1+lenny1_mips.deb
        Size/MD5 checksum:    95356 36f43fb3977aa3ba9e98e1afad32ba77
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-filter_2.6.0.dfsg-1+lenny1_mips.deb
        Size/MD5 checksum:   250860 b0a56dfd1f82c9e6202905aec3f53559
    
    mipsel architecture (MIPS (Little Endian))
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim2_2.6.0.dfsg-1+lenny1_mipsel.deb
        Size/MD5 checksum:    69398 89a04a7c609fa5efe202d10f0326b937
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim-dev_2.6.0.dfsg-1+lenny1_mipsel.deb
        Size/MD5 checksum:    95412 c8292e490a07173b953677ecdf61afc8
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-filter_2.6.0.dfsg-1+lenny1_mipsel.deb
        Size/MD5 checksum:   251438 f40ff08f280bb227d9ceaa9b8fb4e2c1
    
    powerpc architecture (PowerPC)
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-filter_2.6.0.dfsg-1+lenny1_powerpc.deb
        Size/MD5 checksum:   260594 4827598e3fae9fe900705474c29b3fda
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim2_2.6.0.dfsg-1+lenny1_powerpc.deb
        Size/MD5 checksum:    74160 7919526d3a8c919f183e350c6adee3ed
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim-dev_2.6.0.dfsg-1+lenny1_powerpc.deb
        Size/MD5 checksum:    87024 f0123b62e03427c5f70269a627d10cba
    
    s390 architecture (IBM S/390)
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim-dev_2.6.0.dfsg-1+lenny1_s390.deb
        Size/MD5 checksum:    91646 8052a658ac6c38ec302a3fe7e8773c4c
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-filter_2.6.0.dfsg-1+lenny1_s390.deb
        Size/MD5 checksum:   260100 2732ddacf46e58303132fe71c0f61cf0
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim2_2.6.0.dfsg-1+lenny1_s390.deb
        Size/MD5 checksum:    73834 ec7ca2318b02a2bcd93656b5379dd8b0
    
    sparc architecture (Sun SPARC/UltraSPARC)
    
      http://security.debian.org/pool/updates/main/d/dkim-milter/dkim-filter_2.6.0.dfsg-1+lenny1_sparc.deb
        Size/MD5 checksum:   242386 ec1bcb5b3906f99f35968cbceafb98f3
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim2_2.6.0.dfsg-1+lenny1_sparc.deb
        Size/MD5 checksum:    70150 d62a1b54ba4645eaf30c2ef3fbf12aac
      http://security.debian.org/pool/updates/main/d/dkim-milter/libsmdkim-dev_2.6.0.dfsg-1+lenny1_sparc.deb
        Size/MD5 checksum:    90104 7b63548becd10c016eb77dc77eb8ad29
    
    
      These files will probably be moved into the stable distribution on
      its next update.
    
    - ---------------------------------------------------------------------------------
    For apt-get: deb http://security.debian.org/ stable/updates main
    For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
    Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.
    Package info: `apt-cache show ' and http://packages.debian.org/
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"15","type":"x","order":"1","pct":53.57,"resources":[]},{"id":"88","title":"Should be more technical","votes":"4","type":"x","order":"2","pct":14.29,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"9","type":"x","order":"3","pct":32.14,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.