version 1.556, 2006/05/03 16:49:31 |
version 1.557, 2006/05/12 06:39:36 |
|
|
<font color="#009000"><strong>001: SECURITY FIX: March 25, 2006</strong></font> <i>All architectures</i><br> |
<font color="#009000"><strong>001: SECURITY FIX: March 25, 2006</strong></font> <i>All architectures</i><br> |
A race condition has been reported to exist in the handling by sendmail of |
A race condition has been reported to exist in the handling by sendmail of |
asynchronous signals. A remote attacker may be able to execute arbitrary code with the |
asynchronous signals. A remote attacker may be able to execute arbitrary code with the |
privileges of the user running sendmail, typically root. |
privileges of the user running sendmail, typically root. This is the second revision of |
|
this patch. |
<br> |
<br> |
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/001_sendmail.patch"> |
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/001_sendmail.patch"> |
A source code patch exists which remedies this problem</a>.<br> |
A source code patch exists which remedies this problem</a>.<br> |