Sendmail bug to flaw: should I file another bug report?
Jason L Tibbitts III
tibbs at math.uh.edu
Wed Aug 30 15:51:56 UTC 2006
>>>>> "GS" == Gilbert Sebenste <sebenste at weather3.admin.niu.edu> writes:
GS> Someone filed a bug which tells of Sendmail 8.13.8 being released,
GS> which fixed a bug in 8.13.7.
The current security audit says:
CVE-2006-4434 ignore (sendmail, fixed 8.13.8) not exploitable
The CVE says:
Official Statement from Red Hat (8/30/2006)
This flaw causes a crash but does not result in a denial of service
against Sendmail and is therefore not a security issue.
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-4434
- J<
More information about the fedora-list
mailing list