From owner-freebsd-security Mon Mar 3 9:26:27 2003 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C20AA37B4AC for ; Mon, 3 Mar 2003 09:26:13 -0800 (PST) Received: from crimelords.org (crimelords.org [199.233.213.8]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8DD91440E5 for ; Mon, 3 Mar 2003 09:21:11 -0800 (PST) (envelope-from admin@crimelords.org) Received: from crimelords.org (admin@localhost [127.0.0.1]) by crimelords.org (8.12.7/8.12.5) with ESMTP id h23HKHpm042831 for ; Mon, 3 Mar 2003 11:20:17 -0600 (CST) (envelope-from admin@crimelords.org) Received: from localhost (admin@localhost) by crimelords.org (8.12.7/8.12.6/Submit) with ESMTP id h23HKHcb042828 for ; Mon, 3 Mar 2003 11:20:17 -0600 (CST) Date: Mon, 3 Mar 2003 11:20:17 -0600 (CST) From: Emacs To: freebsd-security@FreeBSD.ORG Subject: Sendmail Vulnerability!! Message-ID: <20030303111848.K42761@crimelords.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Other than the standard 'download it from sendmail.org' just wanted to make sure people are looking at www.sendmail.org right now Sendmail 8.12.8 is available; it contains a fix for a critical security problem discovered by Mark Dowd of ISS X-Force; we thank ISS X-Force for bringing this problem to our attention. Sendmail urges all users to either upgrade to sendmail 8.12.8 or apply a patch for 8.12. Patches for older versions are available. For those not running the open source version, check with your vendor for a patch. If you use the commercial version from Sendmail, Inc. then please see the download page. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message