漏洞信息详情
Sendmail异步信号处理竞争条件漏洞
- CNNVD编号:CNNVD-200603-374
- 危害等级: 中危
- CVE编号: CVE-2006-0058
- 漏洞类型: 竞争条件
- 发布时间: 2006-03-22
- 威胁类型: 远程
- 更新时间: 2006-03-27
- 厂 商: sendmail
- 漏洞来源: Mark Dowd
漏洞简介
Sendmail是很多大型站点都在使用的邮件传输代理(MTA)。
Sendmail在接收和处理远程客户端的邮件数据时存在信号竞争漏洞,远程攻击者可能利用此漏洞在服务器上执行任意指令。
Sendmail使用信号处理器来处理非异步安全的超时,该信号处理器的某些函数中断会导致静态数据元素处于不一致的状态。攻击者可以利用这些数据元素向堆或栈中的无效部分写入数据,这样就可以完全控制有漏洞的进程。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
OpenBSD OpenBSD 3.0
OpenBSD 001_sendmail.patch
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/001_sendmail.patc h
IBM AIX 5.1
IBM IY82992
AIX 5.1.0:
http://www.ibm.com/servers/eserver/support/unixservers/aixfixes.HTML
IBM sendmail_vu834865.tar.Z
ftp://aix.software.ibm.com/aix/efixes/security/sendmail_vu834865.tar.Z
HP HP-UX B.11.11
HP PHNE_35484
http://itrc.hp.com
OpenBSD OpenBSD 3.1
OpenBSD 001_sendmail.patch
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/001_sendmail.patc h
HP HP-UX B.11.00
HP PHNE_35483
http://itrc.hp.com
OpenBSD OpenBSD 3.5
OpenBSD 001_sendmail.patch
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/001_sendmail.patc h
OpenBSD OpenBSD 2.3
OpenBSD 001_sendmail.patch
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/001_sendmail.patc h
OpenBSD OpenBSD 2.5
OpenBSD 001_sendmail.patch
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/001_sendmail.patc h
FreeBSD FreeBSD 4.8 -PRERELEASE
FreeBSD sendmail.patch
sendmail.patch has been verified to apply to FreeBSD 5.1, 4.8,and 4.7 systems.
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:13/sendmail.patch
FreeBSD sendmail.patch.asc
sendmail.patch has been verified to apply to FreeBSD 5.1, 4.8,and 4.7 systems.
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:13/sendmail.patch .asc
FreeBSD FreeBSD 4.8
FreeBSD sendmail.patch
sendmail.patch has been verified to apply to FreeBSD 5.1, 4.8,and 4.7 systems.
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:13/sendmail.patch
FreeBSD sendmail.patch.asc
sendmail.patch has been verified to apply to FreeBSD 5.1, 4.8,and 4.7 systems.
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:13/sendmail.patch .asc
SCO Unixware 7.1.4
SCO SCOSA-2006.24
UnixWare 7.1.3, 7.14
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.24
Sendmail Consortium Sendmail 8.11.2
Sendmail Consortium Sendmail 8.13.6
ftp://ftp.sendmail.org/pub/sendmail/sendmail.8.13.6.tar.gz
Sendmail Consortium Sendmail 8.12 beta5
Sendmail Consortium Sendmail 8.13.6
ftp://ftp.sendmail.org/pub/sendmail/sendmail.8.13.6.tar.gz
Sendmail Consortium Sendmail 8.12.1
Mandriva sendmail-8.12.11-1.1.M20mdk.i586.rpm
Multi Network Firewall 2.0:
http://www.mandriva.com/en/download
Mandriva sendmail-8.12.11-1.1.M20mdk.src.rpm
Multi Network Firewall 2.0:
http://www.mandriva.com/en/download
Mandriva sendmail-cf-8.12.11-1.1.M20mdk.i586.rpm
Multi Network Firewall 2.0:
http://www.mandriva.com/en/download
Mandriva sendmail-devel-8.12.11-1.1.M20mdk.i586.rpm
Multi Network Firewall 2.0:
http://www.mandriva.com/en/download
Mandriva sendmail-doc-8.12.11-1.1.M20mdk.i586.rpm
Multi Network Firewall 2.0:
http://www.mandriva.com/en/download
Sendmail Consortium Sendmail 8.13.6
ftp://ftp.sendmail.org/pub/sendmail/sendmail.8.13.6.tar.gz
Slackware sendmail-8.13.6-i486-1.tgz
Slackware 9.1:
ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/s endmail-8.13.6-i486-1.tgz
Slackware sendmail-cf-8.13.6-noarch-1.tgz
Slackware 9.1:
ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/s endmail-8.13.6-i486-1.tgz
Sendmail Consortium Sendmail 8.12.11
Mandriva sendmail-8.12.11-1.1.C30mdk.i586.rpm
Corporate 3.0:
http://www.mandriva.com/en/download
Mandriva sendmail-8.12.11-1.1.C30mdk.src.rpm
Corporate 3.0:
http://www.mandriva.com/en/download
Mandriva sendmail-8.12.11-1.1.C30mdk.x86_64.rpm
Corporate 3.0:
http://www.mandriva.com/en/download
Mandriva sendmail-cf-8.12.11-1.1.C30mdk.i586.rpm
Corporate 3.0:
http://www.mandriva.com/en/download
Mandriva sendmail-cf-8.12.11-1.1.C30mdk.x86_64.rpm
Corporate 3.0:
http://www.mandriva.com/en/download
Mandriva sendmail-devel-8.12.11-1.1.C30mdk.i586.rpm
Corporate 3.0:
http://www.mandriva.com/en/download
Mandriva sendmail-devel-8.12.11-1.1.C30mdk.x86_64.rpm
Corporate 3.0:
http://www.mandriva.com/en/download
Mandriva sendmail-doc-8.12.11-1.1.C30mdk.i586.rpm
Corporate 3.0:
http://www.mandriva.com/en/download
Mandriva sendmail-doc-8.12.11-1.1.C30mdk.x86_64.
参考网址
来源: US-CERT
名称: TA06-081A
链接:http://www.us-cert.gov/cas/techalerts/TA06-081A.HTML
来源: US-CERT
名称: VU#834865
链接:http://www.kb.cert.org/vuls/id/834865
来源: REDHAT
名称: RHSA-2006:0265
链接:http://www.redhat.com/support/errata/RHSA-2006-0265.HTML
来源: REDHAT
名称: RHSA-2006:0264
链接:http://www.redhat.com/support/errata/RHSA-2006-0264.HTML
来源: VUPEN
名称: ADV-2006-1051
链接:http://www.frsirt.com/english/advisories/2006/1051
来源: VUPEN
名称: ADV-2006-1049
链接:http://www.frsirt.com/english/advisories/2006/1049
来源: ISS
名称: 20060322 Sendmail Remote Signal Handling Vulnerability
链接:http://xforce.iss.net/xforce/alerts/id/216
来源: www.sendmail.com
链接:http://www.sendmail.com/company/advisory/index.sHTML
来源: BUGTRAQ
名称: 20060322 sendmail vuln advisories (CVE-2006-0058)
链接:http://www.securityfocus.com/archive/1/428536/100/0/threaded
来源: OPENPKG
名称: OpenPKG-SA-2006.007
链接:http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.007-sendmail.HTML
来源: GENTOO
名称: GLSA-200603-21
链接:http://www.gentoo.org/security/en/glsa/glsa-200603-21.xml
来源: DEBIAN
名称: DSA-1015
链接:http://www.debian.org/security/2006/dsa-1015
来源: SECUNIA
名称: 19367
链接:http://secunia.com/advisories/19367
来源: SECUNIA
名称: 19363
链接:http://secunia.com/advisories/19363
来源: SECUNIA
名称: 19342
链接:http://secunia.com/advisories/19342
来源: MANDRIVA
名称: MDKSA-2006:058
链接:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:058
来源: XF
名称: smtp-timeout-bo(24584)
链接:http://xforce.iss.net/xforce/xfdb/24584
来源: www14.software.ibm.com
链接:http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751
来源: www14.software.ibm.com
链接:http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.HTML#MH00688
来源: BID
名称: 17192
链接:http://www.securityfocus.com/bid/17192
来源: FEDORA
名称: FLSA:186277
链接:http://www.securityfocus.com/archive/1/archive/1/428656/100/0/threaded
来源: FEDORA
名称: FEDORA-2006-193
链接:http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00018.HTML
来源: FEDORA
名称: FEDORA-2006-194
链接:http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00017.HTML
来源: OSVDB
名称: 24037
链接:http://www.osvdb.org/24037
来源: OPENBSD
名称: [3.8] 006: SECURITY FIX: March 25, 2006
链接:http://www.openbsd.org/errata38.HTML#sendmail
来源: SUSE
名称: SUSE-SA:2006:017
链接:http://www.novell.com/linux/security/advisories/2006_17_sendmail.HTML
来源: MANDRIVA
名称: MDKSA-2006:058
链接:http://www.mandriva.com/security/advisories?name=MDKSA-2006:058
来源: VUPEN
名称: ADV-2006-2490
链接:http://www.frsirt.com/english/advisories/2006/2490
来源: VUPEN
名称: ADV-2006-2189
链接:http://www.frsirt.com/english/advisories/2006/2189
来源: VUPEN
名称: ADV-2006-1529
链接:http://www.frsirt.com/english/advisories/2006/1529
来源: VUPEN
名称: ADV-2006-1157
链接:http://www.frsirt.com/english/advisories/2006/1157
来源: VUPEN
名称: ADV-2006-1139
链接:http://www.frsirt.com/english/advisories/2006/1139
来源: VUPEN
名称: ADV-2006-1072
链接:http://www.frsirt.com/english/advisories/2006/1072
来源: VUPEN
名称: ADV-2006-1068
链接:http://www.frsirt.com/english/advisories/2006/1068
来源: www.f-secure.com
链接:http://www.f-secure.com/security/fsc-2006-2.sHTML
来源: CIAC
名称: Q-151
链接:http://www.ciac.org/ciac/bulletins/q-151.sHTML
来源: AIXAPAR
名称: IY82994
链接:http://www-1.ibm.com/support/search.wss?rs=0&q=IY82994&apar=only
来源: AIXAPAR
名称: IY82993
链接:http://www-1.ibm.com/support/search.wss?rs=0&q=IY82993&apar=only
来源: AIXAPAR
名称: IY82992
链接:http://www-1.ibm.com/support/search.wss?rs=0&q=IY82992&apar=only
来源: support.avaya.com
链接:http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm
来源: support.avaya.com
链接:http://support.avaya.com/elmodocs2/security/ASA-2006-074.htm
来源: SUNALERT
名称: 102324
链接:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102324-1
来源: SUNALERT
名称: 102262
链接:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102262-1
来源: SLACKWARE
名称: SSA:2006-08
受影响实体
- Sendmail Sendmail:8.13.4
- Sendmail Sendmail:8.13.5
- Sendmail Sendmail:8.13.3
- Sendmail Sendmail:8.13.1
- Sendmail Sendmail:8.13.2
补丁
暂无
评论