exim 存在字符格式化漏洞发布时间:2001-06-11 更新时间:2001-06-11 严重程度:高 威胁程度:远程管理员权限 错误类型:输入验证错误 利用方式:服务器模式 受影响系统 exim mail详细描述 exim mail 传输代理存在一个打印格式化错误,代码没有检查EMAIL LOG的头 语法,对打印格式化字符串攻击没有很好的保护和检查,可以造成远程 溢出。 测试代码 尚无 解决方案 下载新的程序: Debian GNU/Linux 2.2 alias potato - --------------------------------- Potato was released for alpha, arm, i386, m68k, powerpc and sparc. Source archives: http://security.debian.org/dists/stable/updates/main/source/exim_3.12-10.1.diff.gz MD5 checksum: 959d5e70c78dd0f8daf1bcb470d2851a http://security.debian.org/dists/stable/updates/main/source/exim_3.12-10.1.dsc MD5 checksum: c3ae78797cc1da77b074b91c80f21fc8 http://security.debian.org/dists/stable/updates/main/source/exim_3.12.orig.tar.gz MD5 checksum: 336cd605cb121703af4f22a8c34bb333 ARM architecture: http://security.debian.org/dists/stable/updates/main/binary-arm/exim_3.12-10.1_arm.deb MD5 checksum: 8553e97eef733ab850eba6926bead792 http://security.debian.org/dists/stable/updates/main/binary-arm/eximon_3.12-10.1_arm.deb MD5 checksum: 2b56110866983b0bc4828bc0e4b0b7bd Alpha architecture: http://security.debian.org/dists/stable/updates/main/binary-alpha/exim_3.12-10.1_alpha.deb MD5 checksum: 5e304c46581e3a1e6278b6a677b8308d http://security.debian.org/dists/stable/updates/main/binary-alpha/eximon_3.12-10.1_alpha.deb MD5 checksum: b01e0f2d7986475eba02c280f5321cf2 Intel IA-32 architecture: http://security.debian.org/dists/stable/updates/main/binary-i386/exim_3.12-10.1_i386.deb MD5 checksum: d7e4c6e286fae05abfce28841dc0530e http://security.debian.org/dists/stable/updates/main/binary-i386/eximon_3.12-10.1_i386.deb MD5 checksum: 9dc3b11692b7047fef58c5a8da7741d8 Motorola 680x0 architecture: http://security.debian.org/dists/stable/updates/main/binary-m68k/exim_3.12-10.1_m68k.deb MD5 checksum: 56ccf16d58ce07217a12809fca325597 http://security.debian.org/dists/stable/updates/main/binary-m68k/eximon_3.12-10.1_m68k.deb MD5 checksum: 8031e4a9a8a65a63fdc686e81af0b469 PowerPC architecture: http://security.debian.org/dists/stable/updates/main/binary-powerpc/exim_3.12-10.1_powerpc.deb MD5 checksum: 925523b2d5cb6aa43d146aec7125d59c http://security.debian.org/dists/stable/updates/main/binary-powerpc/eximon_3.12-10.1_powerpc.deb MD5 checksum: 9fa51619d73061c7c221bb876bf65047 Sun Sparc architecture: http://security.debian.org/dists/stable/updates/main/binary-sparc/exim_3.12-10.1_sparc.deb MD5 checksum: b13d02e8d2eb3542c8876f81051e29c7 http://security.debian.org/dists/stable/updates/main/binary-sparc/eximon_3.12-10.1_sparc.deb MD5 checksum: ae8d1ac5b1b228deea25ba8a89c77d21 These packages will be moved into the stable distribution on its next revision. For not yet released architectures please refer to the appropriate directory ftp://ftp.debian.org/debian/dists/sid/binary-$arch/ . - -- - ---------------------------------------------------------------------------- apt-get: deb http://security.debian.org/ stable/updates main dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQB1AwUBOyK1W6jZR/ntlUftAQF3FQMAiXkoKRlL5Cvwgcmn1TL2VDvXvtgs/0YG mvw0B8zMzUk+DfsJl94FC4lB3dclZRQl0O2SNGZbomhgOxhAxumLFUmMqLDcdOj8 Fxr6SIwKg+cWZyg3PdFGcHk2wXY64JQg =5FTy -----END PGP SIGNATURE----- 相关信息 |
