Bug 97915 - mail-mta/courier Possible DoS issue
Bug#: 97915 Product:  Gentoo Security Version: unspecified Platform: All
OS/Version: Linux Status: RESOLVED Severity: minor Priority: P2
Resolution: FIXED Assigned To: security@gentoo.org Reported By: jaervosz@gentoo.org
Component: Vulnerabilities
URL:  http://secunia.com/advisories/15901/
Summary: mail-mta/courier Possible DoS issue
Keywords:  
Status Whiteboard: B3 [noglsa]
Opened: 2005-07-04 10:15 0000
Description:   Opened: 2005-07-04 10:15 0000 
From http://www.courier-mta.org/?changelog.html

2005-07-02  Mr. Sam  <mrsam@courier-mta.com>

	* rfc1035/spf.c: Soft DNS failures weren't handled properly when
	looking up SPF records.  Potential memory corruption.

------- Comment #1 From Stefan Cornelius (RETIRED) 2005-07-04 11:37:27 0000 ------- 
Scott W Taylor, please provide an ebuild for 0.50.1 and/or revbump 0.48.1 to
fix
this issues. Thanks.

------- Comment #2 From Stefan Cornelius (RETIRED) 2005-07-04 11:59:46 0000 ------- 
net-mail, since the maintainer swtaylor seems to be missing, would you please
provide updated ebuilds instead? Thanks.

------- Comment #3 From Andrej Kacian (RETIRED) 2005-07-04 12:42:28 0000 ------- 
The bumped 0.50.1 ebuild builds fine, but breaks collision-protect, since it is
not mailwrapper-compatible. Thus, I can not test it, unless I make necessary
changes. It will take a while, but I'm working on it.

------- Comment #4 From Sune Kloppenborg Jeppesen 2005-07-04 13:44:51 0000 ------- 
According to Changelog swtaylor should be around. I proposed that we wait a 
day or two for him to provide an updated ebuild.

------- Comment #5 From Andrej Kacian (RETIRED) 2005-07-04 13:50:13 0000 ------- 
Created an attachment (id=62622) [details]
A proposed 0.50.0 -> 0.50.1 diff

I have modified a bumped 0.50.1 ebuild to actually work with mailwrapper.
Attached is a diff against 0.50.0 for Scott to review and possibly use. This
ebuild installs on my system with 5 other MTAs installed concurrently.

I will also attach mailer.conf file to be put in ${FILESDIR}, in order for
mailwrapper to work correctly.

------- Comment #6 From Andrej Kacian (RETIRED) 2005-07-04 13:50:33 0000 ------- 
Created an attachment (id=62623) [details]
proposed mailer.conf file for courier

------- Comment #7 From Stefan Cornelius (RETIRED) 2005-07-10 12:49:04 0000 ------- 
Almost a week and no news. Ticho, mind finishing your already started work?

------- Comment #8 From Andrej Kacian (RETIRED) 2005-07-10 13:01:56 0000 ------- 
Actually, I was waiting for swtaylor to chime in on this, but he seems to be
gone. 

What's worse, the mailwrapper compatibility issue seems to be a bit more
complex
than it appears. I'll try again later tonight though.

------- Comment #9 From Andrej Kacian (RETIRED) 2005-07-10 14:38:58 0000 ------- 
Ebuild for 0.50.1 is in portage.

------- Comment #10 From Stefan Cornelius (RETIRED) 2005-07-10 15:15:23 0000 ------- 
Thx for bumping, Ticho.
Arches, please test and mark courier-0.50.1 stable - thanks.

------- Comment #11 From Andrej Kacian (RETIRED) 2005-07-10 15:30:40 0000 ------- 
Actually, since last stable version is 0.48.1, this would be quite a large
step,
and I'd like swtaylor to handle it himself when he comes back.
Please wait, I'll provide a bumped 0.48.1-r1 ebuild which fixes this
vulnerability, soon. Thanks.

------- Comment #12 From Andrej Kacian (RETIRED) 2005-07-10 16:29:09 0000 ------- 
0.48.1-r1 is in portage, arch teams please commence stabilizing. x86 is done.

------- Comment #13 From Jason Wever (RETIRED) 2005-07-10 18:28:42 0000 ------- 
Stable on SPARC

------- Comment #14 From Jory A. Pratt 2005-07-10 18:46:44 0000 ------- 
Go ahead and continue to mark stable I will take over for net-mail on this
issue. I have gone threw and double checked ebuild and all is fine.

------- Comment #15 From René Nussbaumer 2005-07-11 03:32:31 0000 ------- 
Stable on hppa

------- Comment #16 From Simon Stelling (RETIRED) 2005-07-11 04:37:04 0000 ------- 
0.48.1-r1 stable on amd64

------- Comment #17 From Tobias Scherbaum 2005-07-11 11:31:14 0000 ------- 
ppc stable

------- Comment #18 From Bryan Østergaard (RETIRED) 2005-07-11 15:48:15 0000 ------- 
Stable on alpha + ia64.

------- Comment #19 From Stefan Cornelius (RETIRED) 2005-07-11 15:57:17 0000 ------- 
Ready for GLSA vote.

------- Comment #20 From Sune Kloppenborg Jeppesen 2005-07-11 22:32:30 0000 ------- 
I tend to vote NO.

------- Comment #21 From Thierry Carrez (RETIRED) 2005-07-12 00:39:18 0000 ------- 
I vote NO too, this seems rather unlikely.
Feel free to reopen if you disagree