[3504] in bugtraq
Re: Remote exploit in sendmail 8.8.0
daemon@ATHENA.MIT.EDU (Steven L Baur)
Fri Oct 18 17:17:15 1996
Mail-Copies-To: never
Date: Fri, 18 Oct 1996 11:43:56 -0700
Reply-To: Steven L Baur <steve@MIRANOVA.COM>
From: Steven L Baur <steve@MIRANOVA.COM>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To: "D. J. Bernstein"'s message of Fri, 18 Oct 1996 00:20:08 -0000
>>>>> "D" == D J Bernstein <djb@koobera.math.uic.edu> writes:
Dave> That, or get 8.8.1 which is out now. What service!
D> Is it just my imagination, or does sendmail.8.8.1.patch replace
D> if (mime_fromqp((u_char *) buf, &obp, 0, MAXLINE) == 0)
D> with
D> if (mime_fromqp((u_char *) buf, &obp, 0, &obp[MAXLINE] - obp) == 0)
D> This is not exactly what I'd call a fix.
Which is why 8.8.2 is out now. What service!
--
steve@miranova.com baur
Unsolicited commercial e-mail will be billed at $250/message.
What are the last two letters of "doesn't" and "can't"?
Coincidence? I think not.
