Date:         Wed, 7 Apr 2010 13:29:51 -0500
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA Low: sendmail on SL5.x i386/x86_64
Comments: To: "scientific-linux-errata@fnal.gov"
          

Synopsis:	Low: sendmail security and bug fix update
Issue date:	2010-03-30
CVE Names:	CVE-2006-7176 CVE-2009-4565

The configuration of sendmail in Scientific Linux was found to not 
reject the "localhost.localdomain" domain name for email messages that 
come from external hosts. This could allow remote attackers to disguise 
spoofed messages. (CVE-2006-7176)

A flaw was found in the way sendmail handled NUL characters in the
CommonName field of X.509 certificates. An attacker able to get a
carefully-crafted certificate signed by a trusted Certificate Authority
could trick sendmail into accepting it by mistake, allowing the attacker 
to perform a man-in-the-middle attack or bypass intended client 
certificate authentication. (CVE-2009-4565)

Note: The CVE-2009-4565 issue only affected configurations using TLS 
with certificate verification and CommonName checking enabled, which is 
not a typical configuration.

This update also fixes the following bugs:

* sendmail was unable to parse files specified by the ServiceSwitchFile
option which used a colon as a separator. (BZ#512871)

* sendmail incorrectly returned a zero exit code when free space was 
low. (BZ#299951)

* the sendmail manual page had a blank space between the -qG option and
parameter. (BZ#250552)

* the comments in the sendmail.mc file specified the wrong path to SSL
certificates. (BZ#244012)

* the sendmail packages did not provide the MTA capability. (BZ#494408)

SL 5.x

     SRPMS:
sendmail-8.13.8-8.el5.src.rpm
     i386:
sendmail-8.13.8-8.el5.i386.rpm
sendmail-cf-8.13.8-8.el5.i386.rpm
sendmail-devel-8.13.8-8.el5.i386.rpm
sendmail-doc-8.13.8-8.el5.i386.rpm
     x86_64:
sendmail-8.13.8-8.el5.x86_64.rpm
sendmail-cf-8.13.8-8.el5.x86_64.rpm
sendmail-devel-8.13.8-8.el5.i386.rpm
sendmail-devel-8.13.8-8.el5.x86_64.rpm
sendmail-doc-8.13.8-8.el5.x86_64.rpm

-Connie Sieh
-Troy Dawson

SciLinux: CVE-2006-7176 Low: sendmail SL5.x i386/x86_64

Low: sendmail security and bug fix update

Summary

come from external hosts. This could allow remote attackers to disguisespoofed messages. (CVE-2006-7176)A flaw was found in the way sendmail handled NUL characters in theCommonName field of X.509 certificates. An attacker able to get acarefully-crafted certificate signed by a trusted Certificate Authoritycould trick sendmail into accepting it by mistake, allowing the attackerto perform a man-in-the-middle attack or bypass intended clientcertificate authentication. (CVE-2009-4565)Note: The CVE-2009-4565 issue only affected configurations using TLSwith certificate verification and CommonName checking enabled, which isnot a typical configuration.This update also fixes the following bugs:* sendmail was unable to parse files specified by the ServiceSwitchFileoption which used a colon as a separator. (BZ#512871)* sendmail incorrectly returned a zero exit code when free space waslow. (BZ#299951)* the sendmail manual page had a blank space between the -qG option andparameter. (BZ#250552)* the comments in the sendmail.mc file specified the wrong path to SSLcertificates. (BZ#244012)* the sendmail packages did not provide the MTA capability. (BZ#494408)SL 5.xSRPMS:sendmail-8.13.8-8.el5.src.rpmi386:sendmail-8.13.8-8.el5.i386.rpmsendmail-cf-8.13.8-8.el5.i386.rpmsendmail-devel-8.13.8-8.el5.i386.rpmsendmail-doc-8.13.8-8.el5.i386.rpmx86_64:sendmail-8.13.8-8.el5.x86_64.rpmsendmail-cf-8.13.8-8.el5.x86_64.rpmsendmail-devel-8.13.8-8.el5.i386.rpmsendmail-devel-8.13.8-8.el5.x86_64.rpmsendmail-doc-8.13.8-8.el5.x86_64.rpm-Connie Sieh-Troy Dawson



Security Fixes

Severity
Issued Date: : 2010-03-30
CVE Names: CVE-2006-7176 CVE-2009-4565
The configuration of sendmail in Scientific Linux was found to not
reject the "localhost.localdomain" domain name for email messages that

Related News

19.Laptop Bed Esm H320
2 - 3 min read
The release of Google Chrome 124 addresses four vulnerabilities, including a critical security flaw that can enable attackers to execute arbitrary
23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved