Opened 20 years ago

Closed 18 years ago

Last modified 13 years ago

#22 closed defect (fixed)

sendmail.8.12.10

Reported by: markh@… Owned by: billy@…
Priority: normal Milestone:
Component: BOOK Version: ~CVS
Severity: normal Keywords:
Cc:

Description

Attachments (2)

sendmail.patch (7.4 KB ) - added by billy@… 19 years ago.
adds sendmail 8.12.5
sendmail8-12-6.patch (2.3 KB ) - added by billy@… 19 years ago.
Change version and correct configuration typo.

Download all attachments as: .zip

Change History (21)

comment:1 by markh@…, 20 years ago

Milestone: 1.0

comment:2 by iwanek@…, 19 years ago

Summary: sendmail.8.11.4sendmail.8.12.3

comment:3 by iwanek@…, 19 years ago

Summary: sendmail.8.12.3sendmail.8.12.4

new version

comment:4 by iwanek@…, 19 years ago

Summary: sendmail.8.12.4sendmail.8.12.5

from sendmail.org: Sendmail 8.12.5 is available; it fixes a theoretical buffer overflow in a part of the code that is not used by any configuration shipped with sendmail. It affects the dns map if used with the type TXT and a compromised or rogue DNS server is queried.

comment:5 by billy@…, 19 years ago

Owner: changed from blfs-book@… to billy@…

by billy@…, 19 years ago

Attachment: sendmail.patch added

adds sendmail 8.12.5

comment:6 by larry@…, 19 years ago

Resolution: fixed
Status: newclosed

comment:7 by highos@…, 19 years ago

Resolution: fixed
Status: closedreopened
Summary: sendmail.8.12.5sendmail.8.12.6

Version increment. "Several minor problems have been fixed, such as incorrect queue selection for invalid recipients, a combination of FallbackMXhost and relay_based_on_MX resulting in an open relay, owner- envelope splitting being broken if SuperSafe was set to interactive, base64 encoded client authentication data for SMTP AUTH not always working, and the treatment of $#discard for recipients being inconsistent under some circumstances."

by billy@…, 19 years ago

Attachment: sendmail8-12-6.patch added

Change version and correct configuration typo.

comment:8 by larry@…, 19 years ago

Resolution: fixed
Status: reopenedclosed

comment:9 by highos@…, 19 years ago

Resolution: fixed
Status: closedreopened
Summary: sendmail.8.12.6sendmail.8.12.7

Version increment (8.12.7)

comment:10 by highos@…, 19 years ago

Cc: billy@… added

* Bug 167 has been marked as a duplicate of this bug. *

comment:11 by billyoc@…, 19 years ago

Cc: billy@… removed
Status: reopenedassigned

comment:12 by billyoc@…, 19 years ago

Resolution: fixed
Status: assignedclosed

smrsh patch no longer needed.

comment:13 by highos@…, 19 years ago

Resolution: fixed
Status: closedreopened
Summary: sendmail.8.12.7sendmail.8.12.8

Version increment (8.12.8);

"This release contains a fix for a critical security problem. All users are urged to upgrade immediately. Patches for older versions are also available. There is also a bugfix for ident parsing. While this is not believed to be exploitable, if you are not upgrading, you may want to turn off ident checking by adding this to your .mc file: define(confTO_IDENT', 0s')."

comment:14 by larry@…, 19 years ago

Resolution: fixed
Status: reopenedclosed

comment:15 by highos@…, 19 years ago

Resolution: fixed
Status: closedreopened
Summary: sendmail.8.12.8sendmail.8.12.9

Version increment (8.12.9) : Security release.

comment:16 by larry@…, 18 years ago

Resolution: fixed
Status: reopenedclosed

comment:17 by igor@…, 18 years ago

bug_file_loc: http://www.sendmail.org/
Resolution: fixed
Status: closedreopened
Summary: sendmail.8.12.9sendmail.8.12.10

Version increment (8.12.10)

"it contains a fix for a critical security problem discovered by Michal Zalewski. Sendmail urges all users to upgrade to sendmail 8.12.10."

comment:18 by igor@…, 18 years ago

Resolution: fixed
Status: reopenedclosed

comment:19 by (none), 13 years ago

Milestone: 1.0

Milestone 1.0 deleted

Note: See TracTickets for help on using tickets.