Change History (21)
comment:1 by , 23 years ago
| Milestone: | → 1.0 |
|---|
comment:2 by , 23 years ago
| Summary: | sendmail.8.11.4 → sendmail.8.12.3 |
|---|
comment:4 by , 23 years ago
| Summary: | sendmail.8.12.4 → sendmail.8.12.5 |
|---|
from sendmail.org: Sendmail 8.12.5 is available; it fixes a theoretical buffer overflow in a part of the code that is not used by any configuration shipped with sendmail. It affects the dns map if used with the type TXT and a compromised or rogue DNS server is queried.
comment:5 by , 23 years ago
| Owner: | changed from to |
|---|
comment:6 by , 23 years ago
| Resolution: | → fixed |
|---|---|
| Status: | new → closed |
comment:7 by , 23 years ago
| Resolution: | fixed |
|---|---|
| Status: | closed → reopened |
| Summary: | sendmail.8.12.5 → sendmail.8.12.6 |
Version increment. "Several minor problems have been fixed, such as incorrect queue selection for invalid recipients, a combination of FallbackMXhost and relay_based_on_MX resulting in an open relay, owner- envelope splitting being broken if SuperSafe was set to interactive, base64 encoded client authentication data for SMTP AUTH not always working, and the treatment of $#discard for recipients being inconsistent under some circumstances."
by , 23 years ago
| Attachment: | sendmail8-12-6.patch added |
|---|
Change version and correct configuration typo.
comment:8 by , 23 years ago
| Resolution: | → fixed |
|---|---|
| Status: | reopened → closed |
comment:9 by , 22 years ago
| Resolution: | fixed |
|---|---|
| Status: | closed → reopened |
| Summary: | sendmail.8.12.6 → sendmail.8.12.7 |
Version increment (8.12.7)
comment:11 by , 22 years ago
| Cc: | removed |
|---|---|
| Status: | reopened → assigned |
comment:12 by , 22 years ago
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
smrsh patch no longer needed.
comment:13 by , 22 years ago
| Resolution: | fixed |
|---|---|
| Status: | closed → reopened |
| Summary: | sendmail.8.12.7 → sendmail.8.12.8 |
Version increment (8.12.8);
"This release contains a fix for a critical security problem. All users are
urged to upgrade immediately. Patches for older versions are also available.
There is also a bugfix for ident parsing. While this is not believed to be
exploitable, if you are not upgrading, you may want to turn off ident checking
by adding this to your .mc file: define(confTO_IDENT', 0s')."
comment:14 by , 22 years ago
| Resolution: | → fixed |
|---|---|
| Status: | reopened → closed |
comment:15 by , 22 years ago
| Resolution: | fixed |
|---|---|
| Status: | closed → reopened |
| Summary: | sendmail.8.12.8 → sendmail.8.12.9 |
Version increment (8.12.9) : Security release.
comment:16 by , 22 years ago
| Resolution: | → fixed |
|---|---|
| Status: | reopened → closed |
comment:17 by , 22 years ago
| bug_file_loc: | → http://www.sendmail.org/ |
|---|---|
| Resolution: | fixed |
| Status: | closed → reopened |
| Summary: | sendmail.8.12.9 → sendmail.8.12.10 |
Version increment (8.12.10)
"it contains a fix for a critical security problem discovered by Michal Zalewski. Sendmail urges all users to upgrade to sendmail 8.12.10."
comment:18 by , 22 years ago
| Resolution: | → fixed |
|---|---|
| Status: | reopened → closed |
updated:
ftp://ftp.sendmail.org/pub/sendmail/sendmail.8.12.3.tar.gz