[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bugtraq
Subject:    Re: Remote exploit in sendmail 8.8.0
From:       Steven L Baur <steve () miranova ! com>
Date:       1996-10-18 11:43:56
[Download RAW message or body]

>>>>> "D" == D J Bernstein <djb@koobera.math.uic.edu> writes:

Dave> That, or get 8.8.1 which is out now. What service!

D> Is it just my imagination, or does sendmail.8.8.1.patch replace

D>    if (mime_fromqp((u_char *) buf, &obp, 0, MAXLINE) == 0)

D> with

D>    if (mime_fromqp((u_char *) buf, &obp, 0, &obp[MAXLINE] - obp) == 0)

D> This is not exactly what I'd call a fix.

Which is why 8.8.2 is out now.  What service!
--
steve@miranova.com baur
Unsolicited commercial e-mail will be billed at $250/message.
What are the last two letters of "doesn't" and "can't"?
Coincidence?  I think not.

[prev in list] [next in list] [prev in thread] [next in thread]