Return to errata32.html CVS log | Up to [local] / www |
version 1.5, 2003/08/04 16:39:29 | version 1.6, 2003/08/25 19:13:54 | ||
---|---|---|---|
|
|
||
<a name=all></a> | <a name=all></a> | ||
<li><h3><font color="#e00000">All architectures</font></h3> | <li><h3><font color="#e00000">All architectures</font></h3> | ||
<ul> | <ul> | ||
<a name=sendmail3></a> | |||
<li><font color="#009000"><strong>016: SECURITY FIX: August 25, 2003</strong></font><br> | |||
Fix for a potential security issue in | |||
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sendmail&sektion=8">sendmail(8)</a> | |||
with respect to DNS maps. This only affects | |||
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sendmail&sektion=8">sendmail(8)</a> | |||
configurations that use the "enhdnsbl" | |||
feature. The default OpenBSD | |||
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sendmail&sektion=8">sendmail(8)</a> | |||
config does not use this.<br> | |||
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.2/common/016_sendmail.patch">A | |||
source code patch exists which remedies the problem</a>. | |||
<p> | |||
<a name=realpath></a> | <a name=realpath></a> | ||
<li><font color="#009000"><strong>015: SECURITY FIX: August 4, 2003</strong></font><br> | <li><font color="#009000"><strong>015: SECURITY FIX: August 4, 2003</strong></font><br> | ||
An off-by-one error exists in the C library function | An off-by-one error exists in the C library function |