[389] in linux-security and linux-alert archive
SENDMAIL 8.7 SECURITY ALERT
daemon@ATHENA.MIT.EDU (alex)
Sun Sep 24 11:45:19 1995
Date: Sun, 24 Sep 1995 09:26:58 -0400 (EDT)
From: alex <alex@bach.cis.temple.edu>
To: Linux Security Mailing List <linux-security@tarsier.cv.nrao.edu>
cc: Jeff Uphoff <juphoff@tarsier.cv.nrao.edu>, Olaf Kirch <okir@monad.swb.de>,
Russ DeFlavia <russ@tarkus.ocis.temple.edu>,
ray@thunder.ocis.temple.edu,
John Fowler <fowler@falcon.cis.temple.edu>,
ikoniak@falcon.cis.temple.edu, bishop@cs.ucdavis.edu
**************** PLEASE DO NOT REPLY TO EVERYBODY IN THE CC' LIST WHILE
**************** REPLYING TO THIS MESSAGE
Accoring to CERT Coordinator Sendmail 8.7 released during LISA'9
re-introduces old stack overflow security bug. The bug was discovered
within 2 hours after 8.7 was released. From what I know, there is no CERT
advisory about it yet.
Best wishes,
Alex
============================================================================
Alexander O. Yuriev Email: alex@bach.cis.temple.edu
CIS Labs, TEMPLE UNIVERSITY WWW: http://bach.cis.temple.edu/personal/alex
Philadelphia, PA, USA
PGP Key: 1024/ADF3EE95 Fingerprint: AB4FE7382C3627BC 6934EC2A2C05AB62
Unless otherwise stated, everything above is my personal opinion and not an
opinion of any organisation affiliated with me.
=============================================================================
