remote buffer overflow in sendmail

A buffer overflow has been found in sendmail's envelope comment processing code which may allow an attacker to gain root privileges. The bug was discovered by Mark Dowd of ISS X-Force.

For more information, see:

    http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950     http://www.sendmail.org/8.12.8.html

As shipped, OpenBSD runs a sendmail that binds only to localhost, making this a localhost-only hole in the default configuration. However, any sendmail configuration that accepts incoming mail may potentially be exploited.

The sendmail in OpenBSD-current has been updated to version 8.12.8. The 3.1 and 3.2 -stable branches have had a patch applied that fixes the buffer overflow. However, because the -stable branches have the specific vulnerability patched (as opposed to the full 8.12.8 distribution), sendmail on -stable will report the old sendmail version.

Patch for OpenBSD 3.1:
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.1/common/022_sendmail.patch

Patch for OpenBSD 3.2:
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.2/common/009_sendmail.patch

Patches for older versions of sendmail may be found at ftp://ftp.sendmail.org/pub/sendmail/ Received on Mon Mar 3 12:51:52 2003

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related openbsd.org Links advocacy announce bugs ipv6 misc ports ports-changes security-announce smp source-changes tech Request more information about Pantek