Red Hat: 1999-030-01 Critical: Vixie Cron Denial Of Service
debian
December 13, 1999
Red Hat has recently released a Security Advisory (RHSA-1999:030-01)
covering a reverse denial of service bug in the vixie cron package.
As user you could restart sendmail even if ...
Topics Covered
Summary
Red Hat has recently released a Security Advisory (RHSA-1999:030-01)
covering a reverse denial of service bug in the vixie cron package.
As user you could restart sendmail even if the host should not receive
mail through the SMTP port.
Further investigation of Caldera and Debian discovered that it was
even worse. Red Hat did find a root exploit but didn' notice. When
sending a mail to the user Vixie Cron ran as root, not checking the
mail address that was passed to sendmail on the commandline.
We recommend you upgrade your cron package immediately.
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
Debian GNU/Linux 2.1 alias slink
--------------------------------
This version of Debian was released only for the Intel, the
Motorola 68xxx, the alpha and the Sun sparc architecture.
Source archives:
-50.2.diff.gz
MD5 checksum: 96a4b55e06127c4a6cf31ee511227adb
-
50.2.dsc
MD5 checksum: 3998735f00d3f10a5e290227db6bf611
.orig.ta
r.gz
...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!