首页焦点原创安全文摘安全工具安全漏洞焦点项目焦点论坛关于我们

English Version

最近严重漏洞

Microsoft RPC接口远程任意代码可执行漏洞

Cisco IOS接口不正确处理IPV4包远程拒绝服务漏洞

Microsoft Windows CreateFile API命名管道权限提升漏洞

[DSA-093-1] postfix 存在拒绝服务攻击

发布时间：2001-12-13
更新时间：2001-12-13
严重程度：中
威胁程度：远程拒绝服务
错误类型：设计错误
利用方式：服务器模式

受影响系统

postfix
-Debian

详细描述
postfix存在拒绝服务攻击，SMTP会话记录postfix进行调试目的的日志可以导致
不可限制的大小。

测试代码
尚无

解决方案
采用如下补丁：

Potato was released for alpha, arm, i386, m68k, powerpc and sparc.

  Source archives:
    http://security.debian.org/dists/stable/updates/main/source/postfix_0.0.19991231pl11-2.diff.gz
      MD5 checksum: ebbd478c0feef6854bd4b82471d5db39
    http://security.debian.org/dists/stable/updates/main/source/postfix_0.0.19991231pl11-2.dsc
      MD5 checksum: 67653116044cc7735031275317b878eb
    http://security.debian.org/dists/stable/updates/main/source/postfix_0.0.19991231pl11.orig.tar.gz
      MD5 checksum: 97c6b1912b9917cca2e1cb957b2449fd

  Alpha architecture:
    http://security.debian.org/dists/stable/updates/main/binary-alpha/postfix_0.0.19991231pl11-2_alpha.deb
      MD5 checksum: 338079e3346d86c95c655335b3e0649d

  ARM architecture:
    http://security.debian.org/dists/stable/updates/main/binary-arm/postfix_0.0.19991231pl11-2_arm.deb
      MD5 checksum: 0a89e703dfd0f303690628d6deac862c

  Intel IA-32 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-i386/postfix_0.0.19991231pl11-2_i386.deb
      MD5 checksum: abe5ae7acbd0decde71c79f3bfaac6e7

  Motorola 680x0 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-m68k/postfix_0.0.19991231pl11-2_m68k.deb
      MD5 checksum: 2051d03ca9b61e4cdd6815fd67d578ef

  PowerPC architecture:
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/postfix_0.0.19991231pl11-2_powerpc.deb
      MD5 checksum: e214c21f2ba7311456268f12579c7b71

  Sun Sparc architecture:
    http://security.debian.org/dists/stable/updates/main/binary-sparc/postfix_0.0.19991231pl11-2_sparc.deb
      MD5 checksum: 7e588f3fa1d1682318975a88a201780b

相关信息