ImmunixOS 7.0 sendmail update

From: Immunix Security Team (security@wirex.com)
Date: Sat Aug 25 2001 - 02:25:34 CEST

-----------------------------------------------------------------------
        Immunix OS Security Advisory

Packages updated: sendmail
Affected products: Immunix OS 7.0
Bugs fixed: immunix/1615, immunix/1690
Date: Thu Aug 23 2001
Advisory ID: IMNX-2001-70-032-01
Author: Seth Arnold <sarnold@wirex.com>
-----------------------------------------------------------------------

Description:
  This update fixes two problems with sendmail. The first is a fairly
  serious problem handing command line arguments that can lead to root
  privileges, discovered by Cade Cairns. The second is a race condition
  with the signal handling, discovered by Michal Zalewski, with root
  access a possibility.

  StackGuard protection from the first problem is minimal -- while it
  may prevent trivial exploits from running, StackGuard should not be
  counted an effective defense against this problem.

  We recommend users upgrade their sendmail as soon as possible. While
  Immunix OS 6.2 sendmail is not vulnerable to this problem (per Dave
  Ahmed's bugtraq post), we have not researched this issue -- Immunix OS
  6.2 is no longer officially supported.

  References: http://www.securityfocus.com/archive/1/187126
  http://www.securityfocus.com/archive/1/187127
  http://www.securityfocus.com/bid/3163

Package names and locations:
  Precompiled binary packages for Immunix 7.0 are available at:
  http://download.immunix.org/ImmunixOS/7.0/updates/RPMS/sendmail-8.11.6-1_imnx.i386.rpm
  http://download.immunix.org/ImmunixOS/7.0/updates/RPMS/sendmail-cf-8.11.6-1_imnx.i386.rpm
  http://download.immunix.org/ImmunixOS/7.0/updates/RPMS/sendmail-doc-8.11.6-1_imnx.i386.rpm

  Source package for Immunix 7.0 is available at:
  http://download.immunix.org/ImmunixOS/7.0/updates/SRPMS/sendmail-8.11.6-1_imnx.src.rpm

Immunix OS 7.0 md5sums:
  175d5a88678d02f1f50d788919e1e689 RPMS/sendmail-8.11.6-1_imnx.i386.rpm
  c999d8a7a9d4954085a38208bd7d3585 RPMS/sendmail-cf-8.11.6-1_imnx.i386.rpm
  b1ea88228ebb54e10f4e9c2ea95fb41d RPMS/sendmail-doc-8.11.6-1_imnx.i386.rpm
  27873e65dadafb724d8384140ba9d1f2 SRPMS/sendmail-8.11.6-1_imnx.src.rpm

GPG verification:
  Our public key is available at <http://wirex.com/security/GPG_KEY>.
  *** NOTE *** This key is different from the one used in advisories
  IMNX-2001-70-020-01 and earlier.

Online version of all Immunix 6.2 updates and advisories:
  http://immunix.org/ImmunixOS/6.2/updates/

Online version of all Immunix 7.0-beta updates and advisories:
  http://immunix.org/ImmunixOS/7.0-beta/updates/

Online version of all Immunix 7.0 updates and advisories:
  http://immunix.org/ImmunixOS/7.0/updates/

NOTE:
  Ibiblio is graciously mirroring our updates, so if the links above are
  slow, please try:
    ftp://ftp.ibiblio.org/pub/Linux/distributions/immunix/
  or one of the many mirrors available at:
    http://www.ibiblio.org/pub/Linux/MIRRORS.html

Contact information:
  To report vulnerabilities, please contact security@wirex.com. WireX
  attempts to conform to the RFP vulnerability disclosure protocol
  <http://www.wiretrip.net/rfp/policy.html>.

This archive was generated by hypermail 2.1.2 : Sat Aug 25 2001 - 08:04:14 CEST