aru Posted March 23, 2006 Report Share Posted March 23, 2006 Mandriva Advisories MDKSA-2006:058 : sendmail Updated sendmail packages fix remote vulnerability March 22nd, 2006 A race condition was reported in sendmail in how it handles asynchronous signals.This could allow a remote attacker to be able to execute arbitrary code with the privileges of the user running sendmail. The updated packages have been patched to correct this problem via a patch provided by the Sendmail Consortium via CERT. The released versions of Mandriva GNU/Linux affected are: CS3.0 MNF2.0 10.2 2006.0 Full information about this advisory, including the updated packages, is available at: wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:058 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0058 http://www.kb.cert.org/vuls/id/834865 Posted automatically by aru (mdksec2mub v: mdksec2mub,v 0.15 2005/11/24 16:53:12 aru Exp aru $) Link to comment Share on other sites More sharing options...
Recommended Posts