Debian: 8.9.3-3slink1 Critical Alert: Problem with Sendmail Aliases
debian
December 13, 1999
The version of sendmail that was distributed with Debian GNU/Linux 2.1
has a slight problem in the code to regenerate the aliases database.
Sendmail allowed any user to run sendmai...
Topics Covered
Summary
The version of sendmail that was distributed with Debian GNU/Linux 2.1
has a slight problem in the code to regenerate the aliases database.
Sendmail allowed any user to run sendmail with the -bi option to
(re)initialize the aliases database. The user could then interrupt sendmail
and leave the system with a broken aliases database.
This has been fixed in version 8.9.3-3slink1 by only allowing root
and trusted users to regenerate the aliases database.
We recommend you upgrade your sendmail package to new version.
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
Debian GNU/Linux 2.1 alias slink
This version of Debian was released only for Intel ia32, the Motorola
680x0, the alpha and the Sun sparc architecture.
Source archives:
_8.9.3-3slink1.diff.gz
MD5 checksum: 728f0a837a7938cce72203abb23e7c3f
_8.9
.3-3slink1.dsc
MD5 checksum: bca6225d21bfb8e1152f725100966629
_8.9.3.o
rig.tar.gz
MD5 checksum: efedacfbce84a71d1cf...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!