In article <6f1d0j$8n9$1at_private>, Miquel van Smoorenburg <miquelsat_private> wrote: >In article <Pine.LNX.3.96.980321161207.2339A-100000at_private>, >Erik Troan <ewtat_private> wrote: >>On Sat, 21 Mar 1998, Catalin Mitrofan wrote: >> >>> host (user):~>. .mh_profile >>> bash# >> >>Thanks for finding this -- I just put a fix on ftp.redhat.com. > >I've tried this with the Debian mh_6.8.4-17 package, and nothing happens. >(It prints a lot of junk and then exits). Also, mh_check is installed setgid >mail, not setuid root. I have checked the source, and the RedHat fix. It appears that the Debian mh_6.8.4-17 *is* vulnerable, but not with Catalin's exploit (would probably work with some hacking). I've placed a bugreport, and a patch, with severity "critical" into Debian's bugsystem. There should be a fix soon. Mike. -- Miquel van Smoorenburg | Our vision is to speed up time, miquelsat_private | eventually eliminating it.
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:46:46 PDT