#23964 – CVE-2008-7258 (DoS)

Bug 23964 - CVE-2008-7258 (DoS)

Summary: CVE-2008-7258 (DoS)

Status:	CLOSED FIXED

Alias:	None

Product:	Sisyphus
Classification:	Development
Component:	ssmtp (show other bugs)
Version:	unstable
Hardware:	all Linux

Importance:	P3 normal
Assignee:	Michael Shigorin
QA Contact:	qa-sisyphus

URL:	https://bugzilla.redhat.com/show_bug....
Keywords:

Depends on:
Blocks:

Reported:	2010-08-26 14:01 MSD by Michael Shigorin
Modified:	2010-08-28 13:29 MSD (History)
CC List:	1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Michael Shigorin 2010-08-26 14:01:13 MSD

a deficiency in the way ssmtp removed trailing '\n' sequence by processing lines beginning with a leading dot. A local user, could send a specially-crafted e-mail message via ssmtp send-only sendmail emulator, leading to ssmtp executable denial of service (exit with: ssmtp: standardise() -- Buffer overflow). Different vulnerability than CVE-2008-3962.

http://cvs.fedoraproject.org/viewvc/rpms/ssmtp/devel/ssmtp-standardise.patch?view=log

Comment 1 Michael Shigorin 2010-08-28 13:29:02 MSD

* Fri Aug 27 2010 Denis Smirnov <mithraen@altlinux> 2.62.2-alt10
- ALT #23964