Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 530
Alerts This Week
Warning Icon 1 530

Debian 2.1 Critical Advisory: Local Buffer Overflow in Mailx

debian
Calendar Grey June 5, 2000
Debian Logo
-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------
The version of mailx distributed in Debian GNU/Linux 2.1, the frozen (potato) and unstable (woody) distributions is vulnerable to a local buffer overflow.

Summary

Package: mailx
Vulnerability: local exploit
Debian-specific: no

The version of mailx distributed in Debian GNU/Linux 2.1 (a.k.a. slink), as
well as in the frozen (potato) and unstable (woody) distributions is
vulnerable to a local buffer overflow while sending messages. This could be
exploited to give a shell running with group "mail".

This has been fixed in version 8.1.1-10.1, and we recommend that you update
your mailx package immediately.


Debian GNU/Linux 2.1 alias slink

This version of Debian was released only for Intel ia32, the Motorola
680x0, the Alpha, and the Sun Sparc architecture.

Source archives:
MD5 checksum: 13866649fb581d9ca53e2e8c6bb70733
MD5 checksum: 87d8fd019a35aba4041ba12cbde64ee6
MD5 checksum: c779002cb043b57fd5198ec2032cacb0

Alpha architecture:
MD5 checksum: 6da920f8c1d5a4924e88982923cfe5bb

Intel ia32 architecture:
MD5 checksum: f2b17ff796cc5209700f5d58803d9c77

Motorola 680x0 architecture:
MD5 checksum: 908eec...

Read the Full Advisory

Severity
critical
Lowest
Low
Medium
High
Critical

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.