Conectiva Information for VU#897604

Sendmail address parsing buffer overflow



Vendor Statement

Conectiva Linux 6.0, 7.0 and 8 contain sendmail and are vulnerable to this issue, even though sendmail is no longer the default MTA in our distribution. Updated packages will be announced to our mailing lists when ready.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



Please see CLSA-2003:614.

If you have feedback, comments, or additional information about this vulnerability, please send us email.