Simpler Navigation for Servers and Operating Systems - Please Update Your Bookmarks
Completed: a much simpler Servers and Operating Systems section of the Community. We combined many of the older boards, so you won't have to click through so many levels to get at the information you need. Check the consolidated boards here as many sub-forums are now single boards.
If you have bookmarked forums or discussion boards in Servers and Operating Systems, we suggest you check and update them as needed.
Showing results for 
Search instead for 
Did you mean: 

Sendmail and Linux Bug

Berlene Herren
Honored Contributor

Sendmail and Linux Bug

Sendmail Workaround for Linux Capabilities Bug

The Sendmail Consortium and Sendmail, Inc. has been informed of a serious problem in the Linux kernel that can be used to get root
access. This is not a sendmail security problem, although sendmail is one of the vectors for this attack.


There is a bug in the Linux kernel capability model for versions
through 2.2.15 that allows local users to get root. Sendmail is one of the programs that can be attacked this way. This problem
may occur in other capabilities-based kernels.


The correct fix is to update your Linux kernel to version 2.2.16. This is the only way to ensure that other programs
running on Linux cannot be attacked by this bug.