40683 – Sendmail versions prior to 8.12.10 should be masked or patched.

Bug 40683 - Sendmail versions prior to 8.12.10 should be masked or patched.

Summary: Sendmail versions prior to 8.12.10 should be masked or patched.

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All All

Importance:	High critical
Assignee:	Gentoo Security

URL:	http://www.sendmail.org/parse8.359.2....
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2004-02-06 23:05 UTC by Ed Grimm
Modified:	2011-10-30 22:41 UTC (History)
CC List:	3 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Ed Grimm 2004-02-06 23:05:25 UTC

sendmail 8.12.9 and prior versions have a serious security hole; they need a patch applied.  The current builds do not have this patch.

I'm not marking this P1, because there is a stable 8.12.10 ebuild.

Comment 1 solar (RETIRED) gentoo-dev

2004-02-10 21:38:52 UTC

net-mail can we do anything here to get this patched and or removed from the portage tree?

Comment 2 SpanKY gentoo-dev

2004-02-11 20:29:26 UTC

gregf: hope you dont mind but i went ahead and pruned 8.12.8 and 8.12.9