Linux Security
    Linux Security
    Linux Security

    Debian: New sendmail packages fix denial of service

    Date 30 Aug 2006
    8541
    Posted By LinuxSecurity Advisories
    A programming error has been discovered in sendmail, an alternative mail transport agent for Debian, that could allow a remote attacker to crash the sendmail process by sending a specially crafted email message. Please note that in order to install this update you also need libsasl2 library from proposed updates as outlined in DSA 1155-2.
    - --------------------------------------------------------------------------
    Debian Security Advisory DSA 1164-1                    This email address is being protected from spambots. You need JavaScript enabled to view it.
    https://www.debian.org/security/                             Noah Meyerhans
    August 31st, 2006                       https://www.debian.org/security/faq
    - --------------------------------------------------------------------------
    
    Package        : sendmail
    Vulnerability  : programming error
    Problem-Type   : remote
    Debian-specific: no
    CVE ID         : CVE-2006-4434
    BugTraq ID     : 19714
    Debian Bug     : 385054
    
    A programming error has been discovered in sendmail, an alternative
    mail transport agent for Debian, that could allow a remote attacker to
    crash the sendmail process by sending a specially crafted email
    message.
    
    Please note that in order to install this update you also need
    libsasl2 library from proposed updates as outlined in DSA 1155-2.
    
    For the stable distribution (sarge) this problem has been fixed in
    version 8.13.3-3sarge3
    
    For the unstable distribution (sid) this problem has been fixed in
    version 8.13.8-1
    
    We recommend that you upgrade your sendmail package.
    
    
    Upgrade Instructions
    - --------------------
    
    wget url
            will fetch the file for you
    dpkg -i file.deb
            will install the referenced file.
    
    If you are using the apt-get package manager, use the line for
    sources.list as given at the end of this advisory:
    
    apt-get update
            will update the internal database
    apt-get upgrade
            will install corrected packages
    
    You may use an automated update by adding the resources from the
    footer to the proper configuration.
    
    
    Debian GNU/Linux 3.1 alias sarge
    - --------------------------------
    
      Source archives:
    
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.13.4-3sarge3.dsc
          Size/MD5 checksum:      911 89bbdc6b7a1d33146d978408ac7feee2
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.13.4-3sarge3.diff.gz
          Size/MD5 checksum:   385075 a1408b377f382dacfc7d87ef880af60b
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.13.4.orig.tar.gz
          Size/MD5 checksum:  1968047 d80dc659df96c63d227ed80c0c71b708
    
      Architecture independent components:
    
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-base_8.13.4-3sarge3_all.deb
          Size/MD5 checksum:   340668 0fd9a5ace798e807cbc60b7a31919a28
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-cf_8.13.4-3sarge3_all.deb
          Size/MD5 checksum:   279382 1e8db425833f332fa8a525dc107e4614
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-doc_8.13.4-3sarge3_all.deb
          Size/MD5 checksum:   692570 b07b9cfd99ee3bfe38feb62ec408d494
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.13.4-3sarge3_all.deb
          Size/MD5 checksum:   192242 ce9a17d66058281af9d69563e11c910c
    
      Alpha architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_alpha.deb
          Size/MD5 checksum:   319082 223ecb915309c2f467fee4dc70dbb29a
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_alpha.deb
          Size/MD5 checksum:   215652 ed63343a42038fdbf292d20e582a9fa3
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_alpha.deb
          Size/MD5 checksum:   228890 8d087fceb3d923f4892d550419fe6f88
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_alpha.deb
          Size/MD5 checksum:   953980 f50d2db2a52e150ec7466750a5e44bc5
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_alpha.deb
          Size/MD5 checksum:   198182 af2d885e481c00326b2353a071df40b9
    
      AMD64 architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_amd64.deb
          Size/MD5 checksum:   296634 6bd8032a3c89d24f918c544ec87794cc
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_amd64.deb
          Size/MD5 checksum:   213268 41723080176c78d5f2cf1d5764bba131
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_amd64.deb
          Size/MD5 checksum:   225344 27729b95e621ad6fc194e45c845268c7
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_amd64.deb
          Size/MD5 checksum:   851254 4928097e8c69f01e33d29bd0e371e796
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_amd64.deb
          Size/MD5 checksum:   197736 f5e2dde229ccd6457323c6d7dc746420
    
      ARM architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_arm.deb
          Size/MD5 checksum:   291974 abf756019dd7a2f75b3bc5c6fc858ec0
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_arm.deb
          Size/MD5 checksum:   211618 bc7b0597b85aeedbd891d1782aea9b0f
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_arm.deb
          Size/MD5 checksum:   223712 904f2d271dd078850291aa63fed9c077
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_arm.deb
          Size/MD5 checksum:   829384 96686dd8dcd45be34f2f34f64222f558
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_arm.deb
          Size/MD5 checksum:   197276 714fd487ba82221cf9261d61c833b20b
    
      HP Precision architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_hppa.deb
          Size/MD5 checksum:   301562 6991aa63aa29e3753ea4eda0e74004f6
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_hppa.deb
          Size/MD5 checksum:   215700 cc89d2e0be9162c065467bfb3e5fc5e8
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_hppa.deb
          Size/MD5 checksum:   229448 4ed50645b31de5c3b7747286a1de8ce9
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_hppa.deb
          Size/MD5 checksum:   919852 50e486568dec792055f001172a38d45c
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_hppa.deb
          Size/MD5 checksum:   198168 3802ef117e38733a991721a6e70167a5
    
      Intel IA-32 architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_i386.deb
          Size/MD5 checksum:   287344 23bd405e21c9de501d7e8957ed5b2eae
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_i386.deb
          Size/MD5 checksum:   211730 2edbe3c6b12742657071e43618211f97
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_i386.deb
          Size/MD5 checksum:   222522 907a59032ba64011292bbff04e001409
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_i386.deb
          Size/MD5 checksum:   812646 8dc795ba8ffc47659d95f727c20c4711
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_i386.deb
          Size/MD5 checksum:   197428 64eab16e247f5ed9af468e2e804a3e53
    
      Intel IA-64 architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_ia64.deb
          Size/MD5 checksum:   330754 6f32b98862faace5980f5a809acbdbf7
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_ia64.deb
          Size/MD5 checksum:   220496 f94e024b1d70452c6e31aae8032c80cf
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_ia64.deb
          Size/MD5 checksum:   239734 77b337f036edd22ffee5bcd26ccc53fd
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_ia64.deb
          Size/MD5 checksum:  1162690 39b68375190c0ed7b7f6ec42cc08feb3
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_ia64.deb
          Size/MD5 checksum:   199028 ac0d46969e6f38ba6ea9695ba012fb83
    
      Motorola 680x0 architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_m68k.deb
          Size/MD5 checksum:   272860 8b2a2e0cb36979ec484ae21ee7b952f3
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_m68k.deb
          Size/MD5 checksum:   210922 2c80dc1697abb910900d9dea976e0111
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_m68k.deb
          Size/MD5 checksum:   218922 63292f132b4c14935d66eafbd10c8b59
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_m68k.deb
          Size/MD5 checksum:   728606 396de790dcc5135069bbb4374c27ae41
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_m68k.deb
          Size/MD5 checksum:   197236 9241946b199056978336c255c072d348
    
      Big endian MIPS architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_mips.deb
          Size/MD5 checksum:   293200 0e8866145d40f303d076b2529038bad3
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_mips.deb
          Size/MD5 checksum:   212100 55ba2084a7d0b43994a8c983c11e08d8
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_mips.deb
          Size/MD5 checksum:   227434 c559e338459cefee76c1a2ab3efc40e6
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_mips.deb
          Size/MD5 checksum:   883544 29e2b015a7e86d0ef26a779b73e23c11
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_mips.deb
          Size/MD5 checksum:   198194 3fd107d5b11c0b83d6894b360f5d2f2e
    
      Little endian MIPS architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_mipsel.deb
          Size/MD5 checksum:   293842 787fb9e91e842e7f712396a8d585da95
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_mipsel.deb
          Size/MD5 checksum:   212282 4e19166d5eb89e0d30dd0a632f0efba3
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_mipsel.deb
          Size/MD5 checksum:   227590 aa971533751193be6b37b1616f321cad
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_mipsel.deb
          Size/MD5 checksum:   886922 98ee38b69275c0dd03425316c8c288bc
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_mipsel.deb
          Size/MD5 checksum:   198222 a04e73c2282781f36cd8323297f5d5b0
    
      PowerPC architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_powerpc.deb
          Size/MD5 checksum:   294438 1a5d40faaf7c440b9a37c808df4bd252
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_powerpc.deb
          Size/MD5 checksum:   214504 ea3bd8e59d8d2a9987fde2a5bbc1073b
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_powerpc.deb
          Size/MD5 checksum:   226918 25f3b5b6310e41eb0f151dfddc556caa
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_powerpc.deb
          Size/MD5 checksum:   865018 88a5ffaa0bbc0c856c0402f9bc4a9479
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_powerpc.deb
          Size/MD5 checksum:   197786 0959fe3b6f7e445abed6b5f2c9992684
    
      IBM S/390 architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_s390.deb
          Size/MD5 checksum:   295212 e6095777105434012463b4e3009cb332
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_s390.deb
          Size/MD5 checksum:   213348 0bda9d806c5006edea39afecae1ad329
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_s390.deb
          Size/MD5 checksum:   228722 90e47d3b0839b7ad337b29a3b212ee09
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_s390.deb
          Size/MD5 checksum:   875318 9c6a10583814ce3ba0b0fcde1aab1893
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_s390.deb
          Size/MD5 checksum:   197708 f03a2ce3e1d9644eef33a805e42f3705
    
      Sun Sparc architecture:
    
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.4-3sarge3_sparc.deb
          Size/MD5 checksum:   285462 76b0de0933652b1010ec2ac044b8081b
        https://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.4-3sarge3_sparc.deb
          Size/MD5 checksum:   211670 8fd780da99800d30ab26755790b37eb6
        https://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.4-3sarge3_sparc.deb
          Size/MD5 checksum:   222924 5cc657807e798fb6dfc6910c4d3c13ae
        https://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.4-3sarge3_sparc.deb
          Size/MD5 checksum:   819536 232fadedc528ab4962c543796a277055
        https://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.4-3sarge3_sparc.deb
          Size/MD5 checksum:   197440 a6775780418e0729d016ae80774b336d
    
    
      These files will probably be moved into the stable distribution on
      its next update.
    
    - ---------------------------------------------------------------------------------
    For apt-get: deb https://security.debian.org/ stable/updates main
    For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
    Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.
    

    Advisories

    LinuxSecurity Poll

    I agree with Linus Torvalds - Apple's new M1-powered laptops should run on Linux.

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 2 answer(s).
    /main-polls/45-i-agree-with-linus-torvalds-apple-s-new-m1-powered-laptops-should-run-on-linux?task=poll.vote&format=json
    45
    radio
    [{"id":"158","title":"True","votes":"13","type":"x","order":"1","pct":3.95,"resources":[]},{"id":"159","title":"False","votes":"316","type":"x","order":"2","pct":96.05,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

    Please vote first in order to view vote results.


    VIEW MORE POLLS

    bottom 200

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.