• info
• discussion
• exploit
• solution
• references

Debian GNU/Linux Sendmail Package Default SASL Password Vulnerability

Solution:
The vendor has released an advisory (DSA 554-1) along with fixes to address this issue.


Debian Linux 3.0 hppa

• Debian libmilter-dev_8.12.3-7.1_hppa.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_ 8.12.3-7.1_hppa.deb


• Debian sendmail_8.12.3-7.1_hppa.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.12. 3-7.1_hppa.deb

Debian Linux 3.0 ppc

• Debian libmilter-dev_8.12.3-7.1_powerpc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_ 8.12.3-7.1_powerpc.deb


• Debian sendmail_8.12.3-7.1_powerpc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.12. 3-7.1_powerpc.deb

Debian Linux 3.0 s/390

• Debian libmilter-dev_8.12.3-7.1_s390.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_ 8.12.3-7.1_s390.deb


• Debian sendmail_8.12.3-7.1_s390.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.12. 3-7.1_s390.deb

Debian Linux 3.0

• Debian sendmail-doc_8.12.3-7.1_all.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail-doc_8 .12.3-7.1_all.deb

Debian Linux 3.0 arm

• Debian libmilter-dev_8.12.3-7.1_arm.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_ 8.12.3-7.1_arm.deb


• Debian sendmail_8.12.3-7.1_arm.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.12. 3-7.1_arm.deb

Debian Linux 3.0 alpha

• Debian libmilter-dev_8.12.3-7.1_alpha.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_ 8.12.3-7.1_alpha.deb


• Debian sendmail_8.12.3-7.1_alpha.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.12. 3-7.1_alpha.deb

Debian Linux 3.0 mips

• Debian libmilter-dev_8.12.3-7.1_mips.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_ 8.12.3-7.1_mips.deb


• Debian sendmail_8.12.3-7.1_mips.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.12. 3-7.1_mips.deb

Debian Linux 3.0 mipsel

• Debian libmilter-dev_8.12.3-7.1_mipsel.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_ 8.12.3-7.1_mipsel.deb


• Debian sendmail_8.12.3-7.1_mipsel.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.12. 3-7.1_mipsel.deb

Debian Linux 3.0 ia-32

• Debian libmilter-dev_8.12.3-7.1_i386.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_ 8.12.3-7.1_i386.deb


• Debian sendmail_8.12.3-7.1_i386.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.12. 3-7.1_i386.deb

Debian Linux 3.0 sparc

• Debian libmilter-dev_8.12.3-7.1_sparc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_ 8.12.3-7.1_sparc.deb


• Debian sendmail_8.12.3-7.1_sparc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.12. 3-7.1_sparc.deb

Debian Linux 3.0 m68k

• Debian libmilter-dev_8.12.3-7.1_m68k.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_ 8.12.3-7.1_m68k.deb


• Debian sendmail_8.12.3-7.1_m68k.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.12. 3-7.1_m68k.deb

Debian Linux 3.0 ia-64

• Debian libmilter-dev_8.12.3-7.1_ia64.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_ 8.12.3-7.1_ia64.deb


• Debian sendmail_8.12.3-7.1_ia64.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.12. 3-7.1_ia64.deb