d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

New errata item: SA-03:04.

Browse Source
This commit is contained in:
Bruce A. Mah 2003-03-03 18:20:00 +00:00
parent 9e3377a335
commit f5bc71ea34
Notes: svn2git 2020-12-20 02:59:44 +00:00 
svn path=/head/; revision=111834
1 changed files with 8 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
release/doc/en_US.ISO8859-1/errata/article.sgml
View File

@ -133,6 +133,14 @@
given in security advisory <ulink
url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:03.syncookies.asc">FreeBSD-SA-03:03</ulink>.</para>
<para>Due to a buffer overflow in header parsing, a remote
attacker could create a specially crafted message that may cause
<application>sendmail</application> to execute arbitrary code
with the privileges of the user running sendmail, typically
<username>root</username>. More information, including pointers
to patches, can be found in security advisory <ulink
url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:04.sendmail.asc">FreeBSD-SA-03:04</ulink>.</para>
</sect1>
<sect1 id="late-news">