Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
===========================================================================
AUSCERT External Security Bulletin Redistribution
ESB-2010.0096
New sendmail packages fix SSL certificate verification weakness
1 February 2010
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: sendmail
Publisher: Debian
Operating System: Debian GNU/Linux
Impact/Access: Provide Misleading Information -- Remote with User Interaction
Resolution: Patch/Upgrade
CVE Names: CVE-2009-4565
Reference: ASB-2010.0002
Original Bulletin:
http://www.debian.org/security/2010/dsa-1985
- --------------------------BEGIN INCLUDED TEXT--------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- - ------------------------------------------------------------------------
Debian Security Advisory DSA-1985-1 security@debian.org
http://www.debian.org/security/ Giuseppe Iuculano
January 31, 2010 http://www.debian.org/security/faq
- - ------------------------------------------------------------------------
Package : sendmail
Vulnerability : insufficient input validation
Problem type : remote
Debian-specific: no
CVE ID : CVE-2009-4565
Debian bug : 564581
It was discovered that sendmail, a Mail Transport Agent, does not properly handle
a '\0' character in a Common Name (CN) field of an X.509 certificate.
This allows an attacker to spoof arbitrary SSL-based SMTP servers via a crafted server
certificate issued by a legitimate Certification Authority, and to bypass intended
access restrictions via a crafted client certificate issued by a legitimate
Certification Authority.
For the oldstable distribution (etch), this problem has been fixed in
version 8.13.8-3+etch1
For the stable distribution (lenny), this problem has been fixed in
version 8.14.3-5+lenny1
For the unstable distribution (sid), this problem has been fixed in
version 8.14.3-9.1, and will migrate to the testing distribution (squeeze)
shortly.
We recommend that you upgrade your sendmail package.
Upgrade instructions
- - --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian (oldstable)
- - ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.13.8-3+etch1.diff.gz
Size/MD5 checksum: 369120 db03c2498a360f4da02be0e44facca57
http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.13.8-3+etch1.dsc
Size/MD5 checksum: 949 5252fa5d6c477d90f9474f999035f959
http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.13.8.orig.tar.gz
Size/MD5 checksum: 1995868 bcdd005ae02fdb0ecef2d6b21ac44e5d
Architecture independent packages:
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-cf_8.13.8-3+etch1_all.deb
Size/MD5 checksum: 284068 65ef6467d6c85ef90f8e1bb9a0ce3eef
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-doc_8.13.8-3+etch1_all.deb
Size/MD5 checksum: 698342 466aaa8a9cf452943549a3403f869df9
http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.13.8-3+etch1_all.deb
Size/MD5 checksum: 196848 2557652c4c66c3db1f1467272b1c0dfc
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-base_8.13.8-3+etch1_all.deb
Size/MD5 checksum: 345118 8636e42323c07d63fd145cd5329d09b1
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.8-3+etch1_alpha.deb
Size/MD5 checksum: 202704 bba5c73b5da9971f8aee68b000e9b748
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.8-3+etch1_alpha.deb
Size/MD5 checksum: 262668 26794af48fbdbaf3daac51f7b3478cad
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0-dbg_8.13.8-3+etch1_alpha.deb
Size/MD5 checksum: 196278 5cbc296b501b2575d47f1a6201580c28
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.8-3+etch1_alpha.deb
Size/MD5 checksum: 231818 53e7d4f9ba38f266457b1d3d37c9f8eb
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.8-3+etch1_alpha.deb
Size/MD5 checksum: 322192 bee24998a6e6db033f0753fe3fd26314
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.8-3+etch1_alpha.deb
Size/MD5 checksum: 925162 47924bb85a2dbf791b86e1d7e6368b11
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.8-3+etch1_amd64.deb
Size/MD5 checksum: 202258 b13b1a088cb21da832f9125011f051db
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.8-3+etch1_amd64.deb
Size/MD5 checksum: 866764 a0006766d2db53fc31e5326730c4d243
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.8-3+etch1_amd64.deb
Size/MD5 checksum: 300978 8d407fdf40114121dfc16dc8c6416d54
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0-dbg_8.13.8-3+etch1_amd64.deb
Size/MD5 checksum: 196254 2e550571bf2441c2fc1271323a4619d6
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.8-3+etch1_amd64.deb
Size/MD5 checksum: 261332 a8394f8f93c23ec655bab75376b7bb07
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.8-3+etch1_amd64.deb
Size/MD5 checksum: 229794 faefb63a062f5328b450a8de7e740132
arm architecture (ARM)
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.8-3+etch1_arm.deb
Size/MD5 checksum: 201918 1798418509ce66dcd7b62e06373357fd
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0-dbg_8.13.8-3+etch1_arm.deb
Size/MD5 checksum: 196266 66a8e56ebdb6fbcb4c7db7af17d6678d
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.8-3+etch1_arm.deb
Size/MD5 checksum: 857542 437edd61ab05ab2913cdb403dca51b51
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.8-3+etch1_arm.deb
Size/MD5 checksum: 288470 c28bad3e1c9ad1e7ae5dcb2e64d72393
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.8-3+etch1_arm.deb
Size/MD5 checksum: 229324 e0d3bde1c7f8fed9dba3c8d0d0ef8c56
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.8-3+etch1_arm.deb
Size/MD5 checksum: 256846 29b4c31fcaf597be305e480c2df8df43
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.8-3+etch1_hppa.deb
Size/MD5 checksum: 233760 25b7a4b659501c920ca3c8f89521dcea
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.8-3+etch1_hppa.deb
Size/MD5 checksum: 202986 068bb27595c517133e2ab3d9b0dd4709
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.8-3+etch1_hppa.deb
Size/MD5 checksum: 258902 afe3011bd08f3ce3c520b301bce7702f
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0-dbg_8.13.8-3+etch1_hppa.deb
Size/MD5 checksum: 196266 c8cca90f819ddf244ad9a4ee520297b7
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.8-3+etch1_hppa.deb
Size/MD5 checksum: 924806 231cf507f97386af28667ea786c2eac1
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.8-3+etch1_hppa.deb
Size/MD5 checksum: 301434 7c9c9bf73a91a74cbccf3d6087b06d2b
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.8-3+etch1_i386.deb
Size/MD5 checksum: 258810 405f1653150b3779525faaedf5e483c3
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.8-3+etch1_i386.deb
Size/MD5 checksum: 830184 d0e8b06dbfe54a312dce8c49c35fccbb
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.8-3+etch1_i386.deb
Size/MD5 checksum: 227812 8f497b7372c3d0138326869aac7f6092
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.8-3+etch1_i386.deb
Size/MD5 checksum: 292662 b2304bc7e4180865d044c98e021c055f
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.8-3+etch1_i386.deb
Size/MD5 checksum: 202390 3cb4995e95000339fa091cdff80a8571
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0-dbg_8.13.8-3+etch1_i386.deb
Size/MD5 checksum: 196358 25962ad5d0475e05ef61daf754c43492
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0-dbg_8.13.8-3+etch1_ia64.deb
Size/MD5 checksum: 196272 1a4649feebed2e3d6e654a6516355317
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.8-3+etch1_ia64.deb
Size/MD5 checksum: 203786 8b5604817c67e12625779827baca9c96
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.8-3+etch1_ia64.deb
Size/MD5 checksum: 268910 4122a2e311591bc377908e16d4964ec6
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.8-3+etch1_ia64.deb
Size/MD5 checksum: 245750 257adcdb15adbf6e7c704ee94cacb2d3
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.8-3+etch1_ia64.deb
Size/MD5 checksum: 338558 7f4bf9abb4ca3b7cbe6dcb892d55e8b4
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.8-3+etch1_ia64.deb
Size/MD5 checksum: 1213554 c85694d0f4145562cdcddf0b70eb3b40
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.8-3+etch1_mipsel.deb
Size/MD5 checksum: 900128 34de9d8996fc53833922ba9e612880ea
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0-dbg_8.13.8-3+etch1_mipsel.deb
Size/MD5 checksum: 196274 5334f2952f7dad6402c46a1cbd68f064
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.8-3+etch1_mipsel.deb
Size/MD5 checksum: 259490 dd05b7275508cc9f97099fd6890d71b4
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.8-3+etch1_mipsel.deb
Size/MD5 checksum: 300788 9bfebccccc9bc027127cf1fdc0e3502a
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.8-3+etch1_mipsel.deb
Size/MD5 checksum: 202458 d25a9b6359b1d35e9611badaf09e04f9
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.8-3+etch1_mipsel.deb
Size/MD5 checksum: 232030 8846d9e597c3ee7cd57cc1ba78c4241d
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.8-3+etch1_powerpc.deb
Size/MD5 checksum: 261128 6a7690e9fb192d0dc148f948d7f21c05
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.8-3+etch1_powerpc.deb
Size/MD5 checksum: 294652 e4fbbac48ceb05fe9fa5b6154dce77c1
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.8-3+etch1_powerpc.deb
Size/MD5 checksum: 871652 3d1d31daf570415cc1e278e442b93656
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.8-3+etch1_powerpc.deb
Size/MD5 checksum: 231294 e317ee912808e3f0f30682403bd675dd
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.8-3+etch1_powerpc.deb
Size/MD5 checksum: 202370 df50ecc14c84b0f93fbea715047bbabb
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0-dbg_8.13.8-3+etch1_powerpc.deb
Size/MD5 checksum: 196266 2c7092a7853b5a6e931560d0e89e9c3a
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0-dbg_8.13.8-3+etch1_s390.deb
Size/MD5 checksum: 196272 029993e64cec3aa0145772e3bff7bd8a
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.8-3+etch1_s390.deb
Size/MD5 checksum: 260170 36fe7f0d94a81e4d6ff923f90a26682b
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.8-3+etch1_s390.deb
Size/MD5 checksum: 300854 4d96568bc19fcee5ebcee7d4b8212756
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.8-3+etch1_s390.deb
Size/MD5 checksum: 202056 fe8d9920bc011553940f43329a47480b
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.8-3+etch1_s390.deb
Size/MD5 checksum: 234484 9f070d5724172abceb604a19aa35baa9
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.8-3+etch1_s390.deb
Size/MD5 checksum: 902004 c2b20e2e9dbe18afa1252e663f5ae498
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.13.8-3+etch1_sparc.deb
Size/MD5 checksum: 227492 d0025442fcc924a8fb9a5df2a85f5c21
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0-dbg_8.13.8-3+etch1_sparc.deb
Size/MD5 checksum: 196288 1959a6c733e0b0a060f55ea4a8dc5322
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.13.8-3+etch1_sparc.deb
Size/MD5 checksum: 829574 193136dbfc2172cd59b0c4aa88281baa
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.13.8-3+etch1_sparc.deb
Size/MD5 checksum: 289068 19f3984a8008b8ebae913124187be49a
http://security.debian.org/pool/updates/main/s/sendmail/libmilter0_8.13.8-3+etch1_sparc.deb
Size/MD5 checksum: 255354 6de39f19bf79eb0823419909aa03dd4a
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.13.8-3+etch1_sparc.deb
Size/MD5 checksum: 202190 3806844fdd0c0bd05368af19c54f778c
Debian (stable)
- - ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.14.3-5+lenny1.dsc
Size/MD5 checksum: 1504 39619f499cdbace73edd78894b931e43
http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.14.3-5+lenny1.diff.gz
Size/MD5 checksum: 362573 483a8842d3d1f16362dc88f46316ae06
http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.14.3.orig.tar.gz
Size/MD5 checksum: 2060171 3476e9655ba95842bee96753c992b99b
Architecture independent packages:
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-cf_8.14.3-5+lenny1_all.deb
Size/MD5 checksum: 295472 a881efa0de975702900734bceab7ffb6
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-doc_8.14.3-5+lenny1_all.deb
Size/MD5 checksum: 833618 1e86303b48590dfbc200e4ccfc9a1dc9
http://security.debian.org/pool/updates/main/s/sendmail/sendmail_8.14.3-5+lenny1_all.deb
Size/MD5 checksum: 206546 d40fde3590704b097ca683e70ec3227f
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-base_8.14.3-5+lenny1_all.deb
Size/MD5 checksum: 358922 b444f7633b213d8cbbb68d6f88bb116c
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_alpha.deb
Size/MD5 checksum: 253874 937a6749c4eca5f3c73cd7eb12f590b7
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_alpha.deb
Size/MD5 checksum: 345342 d4f1222e459807c679853b2d3d4544ac
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_alpha.deb
Size/MD5 checksum: 238306 d7715e99da1682556731960ec4898aaa
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_alpha.deb
Size/MD5 checksum: 245984 723146743d82a21e145a3a4be48b7c7a
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_alpha.deb
Size/MD5 checksum: 967662 42e3ac3322f78c8b55f82d8c5a7c1e14
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_alpha.deb
Size/MD5 checksum: 214954 9949a23986dd49c46c344d4cd13b92e2
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_amd64.deb
Size/MD5 checksum: 214596 0ea6517f39733be2e89989274e35052b
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_amd64.deb
Size/MD5 checksum: 255178 16ddeb6103b5f5642ce7a87b1056b3e9
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_amd64.deb
Size/MD5 checksum: 246478 0103c1c04d5d74ff7f02d05c5e191c3d
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_amd64.deb
Size/MD5 checksum: 328198 a99bf005d2014e4dbfcbe94e3ea46583
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_amd64.deb
Size/MD5 checksum: 976578 4ff12de46d3585642597b932f0ddd1a8
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_amd64.deb
Size/MD5 checksum: 237278 fc0aab20ab63becfead49d0881fe96cb
arm architecture (ARM)
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_arm.deb
Size/MD5 checksum: 232234 6276e33285ccec62abfa1423c970edac
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_arm.deb
Size/MD5 checksum: 242310 7d03c4c9304c33d2abe77dfaf7358b6e
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_arm.deb
Size/MD5 checksum: 309174 bbc55ea9c80f938cfc9f28bb1878be6d
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_arm.deb
Size/MD5 checksum: 934464 4fbddf6e1db85b5ff7ee7d161e1d77fd
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_arm.deb
Size/MD5 checksum: 252046 c59709f62c58cb2d781fcd0f02bc3da9
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_arm.deb
Size/MD5 checksum: 214146 5336a32c7fa7cf43e96879041f265628
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_armel.deb
Size/MD5 checksum: 251832 e4941805b21f87bc294379b3ae5f9ed8
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_armel.deb
Size/MD5 checksum: 308756 5ca468d55abd745c46f5b76cead97223
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_armel.deb
Size/MD5 checksum: 231792 ce4d6a6bf07a68ed34cfab4f038a675e
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_armel.deb
Size/MD5 checksum: 242814 45e4b790f71916f76ebda012a83001ed
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_armel.deb
Size/MD5 checksum: 214354 bd4e447688160a54aa8bd03122f515ba
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_armel.deb
Size/MD5 checksum: 932044 6c587d57090aadfb32a545b37f00ac93
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_hppa.deb
Size/MD5 checksum: 1039526 6d66e3d82181bdae2fe2c011ad80c395
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_hppa.deb
Size/MD5 checksum: 248882 342439f3654e60f3f28baf27b25b3d94
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_hppa.deb
Size/MD5 checksum: 235596 209f5222150e1ca5472f2a5faf623e7e
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_hppa.deb
Size/MD5 checksum: 215360 3a371f41db4ae8ff9e986228cd24cfda
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_hppa.deb
Size/MD5 checksum: 321916 ed5b5b513697f26381ac2a66ddce05fe
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_hppa.deb
Size/MD5 checksum: 252632 3d3c63808bf9c347235187bfac0decbf
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_i386.deb
Size/MD5 checksum: 243262 39e5329ec1fc4e0daabbf06c6934c038
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_i386.deb
Size/MD5 checksum: 214498 35567466e98b5cd66540915448e11cf3
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_i386.deb
Size/MD5 checksum: 235632 f7facff44a046aca0fda6b71634af2c1
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_i386.deb
Size/MD5 checksum: 253198 62916ef56fb537fe01a74549dccce69f
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_i386.deb
Size/MD5 checksum: 318478 4d8db5fbb1babd56b13773d657aeecdb
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_i386.deb
Size/MD5 checksum: 927790 e673ebdb9bb42f7af22eabd26cd47314
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_ia64.deb
Size/MD5 checksum: 259046 535ad02335435465eedccbf93c4a9db6
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_ia64.deb
Size/MD5 checksum: 1249794 cbb30d97bbf36890dd46422a4c3b9335
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_ia64.deb
Size/MD5 checksum: 245788 4090c4af51b7b37acbee64773431bf92
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_ia64.deb
Size/MD5 checksum: 253208 c7ead8ea98e7af3022295efe48ff328e
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_ia64.deb
Size/MD5 checksum: 215656 fe8e723c804be1324cf4a262cbb77bbb
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_ia64.deb
Size/MD5 checksum: 362638 2fb3812587a1c801c0a751c3e7963d63
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_mips.deb
Size/MD5 checksum: 929562 42c931a18eb21bcef56e92f67e5f03db
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_mips.deb
Size/MD5 checksum: 232678 656cdb78a72c75cbb4b065f30c3f9329
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_mips.deb
Size/MD5 checksum: 244568 07e6e929be48887f40a7da8952fa8d74
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_mips.deb
Size/MD5 checksum: 321916 0c683e0403e283bc5b3eb74375c31643
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_mips.deb
Size/MD5 checksum: 214478 bc4dbf2196f36fe6197dd6b47d0622e8
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_mips.deb
Size/MD5 checksum: 254604 7d1482ab8f5c5e12dc3ca1ae485dd7f7
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_mipsel.deb
Size/MD5 checksum: 254008 062866141c0ea336649679387b9680ad
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_mipsel.deb
Size/MD5 checksum: 214498 678c36c92bfede7ed7f4a22e9963c8a8
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_mipsel.deb
Size/MD5 checksum: 930580 1659a1abaa05ee8b87629a03f9fe7ac9
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_mipsel.deb
Size/MD5 checksum: 244666 cfd5792d66d9bf4afff3d57b0d07f221
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_mipsel.deb
Size/MD5 checksum: 232838 9f45348868591ef374b4456295a15f32
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_mipsel.deb
Size/MD5 checksum: 322102 54515b9f45310e86d1d32906df722336
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_powerpc.deb
Size/MD5 checksum: 974022 1c37948467d4fec4886b8aa99be27a1e
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_powerpc.deb
Size/MD5 checksum: 255992 90fd40ea3490b44ece28acc8a4fe826b
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_powerpc.deb
Size/MD5 checksum: 215260 cafb7da0dd2576b3246c4921c97bb43a
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_powerpc.deb
Size/MD5 checksum: 239168 e563c9a87f92fecd534b32117dbb42f7
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_powerpc.deb
Size/MD5 checksum: 321120 6c976e861f549695a0c8e5a6b2e90ca3
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_powerpc.deb
Size/MD5 checksum: 247760 512627779646f9adfd92971d5cac5dc7
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_s390.deb
Size/MD5 checksum: 250630 f1f9b514708d97773ad74b13f4c4058f
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_s390.deb
Size/MD5 checksum: 1034220 be9222edad8e87af288f562e6e7d466e
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_s390.deb
Size/MD5 checksum: 254240 16ac8e7dc48607fca96c827df56a0f96
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_s390.deb
Size/MD5 checksum: 324662 b2f5e64b1138a7fe8212c67abf88aaf6
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_s390.deb
Size/MD5 checksum: 237004 de84239ba51b5649966b963a073a3878
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_s390.deb
Size/MD5 checksum: 214816 5c01bf333cdfe50b8e3b5501cc7c494a
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/s/sendmail/sensible-mda_8.14.3-5+lenny1_sparc.deb
Size/MD5 checksum: 214672 a7680df86dc7c11ed7f02232136ae58a
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1_8.14.3-5+lenny1_sparc.deb
Size/MD5 checksum: 234996 5a9c4d48a45d32184670216e80a38f7a
http://security.debian.org/pool/updates/main/s/sendmail/libmilter-dev_8.14.3-5+lenny1_sparc.deb
Size/MD5 checksum: 313516 885201f32dfd8c5049428085b23ab0f7
http://security.debian.org/pool/updates/main/s/sendmail/sendmail-bin_8.14.3-5+lenny1_sparc.deb
Size/MD5 checksum: 977328 03c6b2cbd690fe8b70bffa07581eb178
http://security.debian.org/pool/updates/main/s/sendmail/rmail_8.14.3-5+lenny1_sparc.deb
Size/MD5 checksum: 244848 14b649b4b66b1e229fe85fed85f77915
http://security.debian.org/pool/updates/main/s/sendmail/libmilter1.0.1-dbg_8.14.3-5+lenny1_sparc.deb
Size/MD5 checksum: 250876 39dc7ca4b7cd3287c61fc3f893d8a9bf
These files will probably be moved into the stable distribution on
its next update.
- - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAktllGYACgkQNxpp46476aqLlACffXKJwlByUd4ixLn620o3FBkg
XUAAoJ7VlvOrUZ/dR1apRodlr17OZt2a
=ge0z
- -----END PGP SIGNATURE-----
- --------------------------END INCLUDED TEXT--------------------
You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.
NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.
NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.
Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.
Previous advisories and external security bulletins can be retrieved from:
http://www.auscert.org.au/render.html?cid=1980
If you believe that your computer system has been compromised or attacked in
any way, we encourage you to let us know by completing the secure National IT
Incident Reporting Form at:
http://www.auscert.org.au/render.html?it=3192
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
iD8DBQFLZkk0/iFOrG6YcBERAhj5AJ9NXrzgz+ZhebpqfkBjtwPrEp+MxgCg4dJD
E5hyLKOJwuM/5gBrn0zF5Vg=
=mVPC
-----END PGP SIGNATURE-----