Buffer overflows in Deliver: get 2.1.13

From: Chip Salzenberg (chipat_private)
Date: Mon Jan 12 1998 - 08:36:14 PST

Next message: Ruth Milner [VLA]: "update on Solaris 2.6 security logging"

Previous message: osirisat_private: "hole in sudo for MP-RAS."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I'm the author of Deliver, a program for local delivery of mail.
Normally, Deliver is installed suid root.  There's are two buffer
overflow bugs in versions of Deliver currently in use.  If you
use Deliver or know someone who does, I strongly suggest upgrading
to Deliver 2.1.13.  Here's one place to get it:

    http://www.pobox.com/~chip/deliver-2.1.13.tar.gz

PS: I'll be happy to send a PGP-signed copy of this message once I
    manage to get my PGP to produce a human-readable signed message.
    (For some reason it always generates opaque output for me...)

--
Chip Salzenberg               - a.k.a. -                <chipat_private>
 "I stopped that bus and I saved them kids!" "All except one -- the one
you let drive!" "He showed me his license..." "He was seven!!!" // MST3K

Next message: Ruth Milner [VLA]: "update on Solaris 2.6 security logging"
Previous message: osirisat_private: "hole in sudo for MP-RAS."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:38:41 PDT