[3500] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Remote exploit in sendmail 8.8.0

daemon@ATHENA.MIT.EDU (D. J. Bernstein)
Thu Oct 17 21:24:41 1996

Date: 	Fri, 18 Oct 1996 00:20:08 -0000
Reply-To: "D. J. Bernstein" <djb@koobera.math.uic.edu>
From: "D. J. Bernstein" <djb@koobera.math.uic.edu>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>

> That, or get 8.8.1 which is out now. What service!

Is it just my imagination, or does sendmail.8.8.1.patch replace

   if (mime_fromqp((u_char *) buf, &obp, 0, MAXLINE) == 0)

with

   if (mime_fromqp((u_char *) buf, &obp, 0, &obp[MAXLINE] - obp) == 0)

This is not exactly what I'd call a fix.

---Dan


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[3500] in bugtraq

Re: Remote exploit in sendmail 8.8.0

daemon@ATHENA.MIT.EDU (D. J. Bernstein)Thu Oct 17 21:24:41 1996

daemon@ATHENA.MIT.EDU (D. J. Bernstein)
Thu Oct 17 21:24:41 1996