what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New


Posted Sep 23, 1999


SHA-256 | d86b41a1ea55481bb6ad86d73739fb65274a58eb4d53e959f346cbb04fc6cfd8


Change Mirror Download

Subject: Caldera Security Advisory SA-1997.10: Security updates to sendmail

Caldera Security Advisory SA-1997.10

Original report date: 14-Jun-1997
RPM build date: 16-Jun-1997
Original issue date: 22-Jul-1997
Last revised: 22-Jul-1997

Topic: Security updates to sendmail

I. Problem Description

Sendmail 8.8.6 has been released. This version contains many
bug fixes (and no new features). A few of these fixes are
security related, although most of these are specific to unusual
circumstances (e.g., obsolete versions of HP-UX that didn't
implement the O_EXCL open bit properly, or problems resulting from
systems that put database maps into world writable directories).
Complete RELEASE_NOTES for this release are included in the source

II. Impact

The list of changes in this release is long. As mentioned above,
most are not security related. But those that are security related
are documented in the lengthy RELEASE_NOTES file that can be found
in the source RPM.

III. Solution

Install the new sendmail 8.8.6 packages, as described below.
These packages are located on Caldera's FTP server (ftp.caldera.com):


The MD5 checksum (from the "md5sum" command) for these package are:
0360c84a4e69ac78f8512659c2012441 RPMS/sendmail-8.8.6-1.i386.rpm
d73d10ed515a39f8218af6c9599313a5 RPMS/sendmail-cf-8.8.6-1.i386.rpm
a6b771657f9e7203f9217ab84cce4007 RPMS/sendmail-doc-8.8.6-1.i386.rpm
e6b89f61566ef69b3d3ccfaa9a0b7bff SRPMS/sendmail-8.8.6-1.src.rpm

Please follow these instructions precisely to update any older
version of sendmail that may be on your system:

/etc/rc.d/init.d/mta stop
rpm -q sendmail-doc && rpm -U RPMS/sendmail-doc-8.8.6-1.i386.rpm
rpm -q sendmail-cf && rpm -U RPMS/sendmail-cf-8.8.6-1.i386.rpm
rpm -e sendmail && rpm -i RPMS/sendmail-8.8.6-1.i386.rpm
[ -e /etc/sendmail.cf.rpmsave ] && echo "configuration changed..."
/etc/rc.d/init.d/mta start

Note: One must perform the updates in the order shown above to avoid
having rpms conflict during the upgrade.

Note: The warning message
"cannot remove /usr/share/sendmail - directory not empty"
during installation of sendmail-cf can be safely ignored.

Note: /etc/sendmail.cf has changed quite a bit -- overwriting it with
a potential /etc/sendmail.cf.rpmsave is NOT a viable option! Previous
changes have to be re-applied (preferably with m4 and .mc files).

IV. References / Credits

This and other Caldera security resources are located at:


This advisory is based on a the sendmail upgrade announced to the
BUGTRAQ email list by Eric Allman - message id:


See also the Sendmail Home Page:


Sendmail has a Usenet newsgroup: comp.mail.sendmail.

This advisory closes Caldera's internal bug report #804.

$Id: SA-1997.10,v 1.2 1997/07/23 02:12:09 ron Exp $

Version: 2.6.3a
Charset: noconv

Login or Register to add favorites

File Archive:

March 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    13 Files
  • 3
    Mar 3rd
    15 Files
  • 4
    Mar 4th
    0 Files
  • 5
    Mar 5th
    0 Files
  • 6
    Mar 6th
    16 Files
  • 7
    Mar 7th
    31 Files
  • 8
    Mar 8th
    16 Files
  • 9
    Mar 9th
    13 Files
  • 10
    Mar 10th
    9 Files
  • 11
    Mar 11th
    0 Files
  • 12
    Mar 12th
    0 Files
  • 13
    Mar 13th
    10 Files
  • 14
    Mar 14th
    6 Files
  • 15
    Mar 15th
    17 Files
  • 16
    Mar 16th
    22 Files
  • 17
    Mar 17th
    13 Files
  • 18
    Mar 18th
    0 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    16 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags


packet storm

© 2022 Packet Storm. All rights reserved.

Security Services
Hosting By