23 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-3956
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The smcloseonexec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FDCLOEXEC flags, which...
Mageia: Security Advisory (MGASA-2014-0270)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Advisory ROSA-SA-2021-1969
Software: sendmail 8.14.7 OS: Cobalt 7.9 CVE-ID: CVE-2014-3956 CVE-Crit: CRITICAL CVE-DESC: The smcloseonexec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order and therefore misses setting expected FDCLOEXEC flags, which allows local users to access unintended file...
SUSE: Security Advisory (SUSE-SU-2014:0872-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for sendmail (EulerOS-SA-2019-2549)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for sendmail (EulerOS-SA-2019-2440)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for sendmail (EulerOS-SA-2019-2661)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP2 : sendmail (EulerOS-SA-2019-2440)
According to the version of the sendmail packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The Sendmail program is a very widely used Mail Transport Agent MTA.MTAs send mail from one machine to another. Sendmail is not a client program,...
AIX 6.1 TL 9 : sendmail (IJ02915)
https://vulners.com/cve/CVE-2014-3956 https://vulners.com/cve/CVE-2014-3956 The smcloseonexec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FDCLOEXEC flags, which allows local users to access unintended high-numbered file...
Vulnerability in sendmail impacts AIX (CVE-2014-3956),Vulnerability in sendmail impacts VIOS (CVE-2014-3956)
IBM SECURITY ADVISORY First Issued: Fri Apr 6 11:18:40 CDT 2018 |Updated: Mon Sep 17 09:18:47 CDT 2018 |Update: Clarified that AIX 7.2 TL0 SP6 and bos.net.tcp.sendmail fileset level | 7.2.0.3 are impacted. An iFix for AIX 7.2 TL0 SP6 is now available. The most recent version of this document is...
Gentoo Security Advisory GLSA 201412-32
Gentoo Linux Local Security Checks GLSA 201412-32 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
Oracle Solaris Third-Party Patch Update : sendmail (cve_2014_3956_information_disclosure)
The remote Solaris system is missing necessary patches to address security updates : - The smcloseonexec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FDCLOEXEC flags, which allows local users to access unintended...
GLSA-201412-32 : sendmail: Information disclosure
The remote host is affected by the vulnerability described in GLSA-201412-32 sendmail: Information disclosure The smcloseonexec function in conf.c has arguments in the wrong order. Impact : A local attacker could get access to unintended high-numbered file descriptors via a specially crafted...
Mandriva Linux Security Advisory : sendmail (MDVSA-2014:147)
Updated sendmail packages fix security vulnerability : Sendmail before 8.14.9 does not properly closing file descriptors before executing programs. This bug could enable local users to interfere with an open SMTP connection if they can execute their own program for mail delivery e.g., via procmai...
SuSE 11.3 Security Update : sendmail (SAT Patch Number 9345)
sendmail has been updated to fix the following security issue : - Not properly closing file descriptors before executing programs. CVE-2014-3956 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update...
MGASA-2014-0270 Updated sendmail packages fix CVE-2014-3956
Updated sendmail packages fix security vulnerability: Sendmail before 8.14.9 does not properly closing file descriptors before executing programs. This bug could enable local users to interfere with an open SMTP connection if they can execute their own program for mail delivery e.g., via procmail...
Updated sendmail packages fix CVE-2014-3956
Updated sendmail packages fix security vulnerability: Sendmail before 8.14.9 does not properly closing file descriptors before executing programs. This bug could enable local users to interfere with an open SMTP connection if they can execute their own program for mail delivery e.g., via procmail...
openSUSE Security Update : sendmail (openSUSE-SU-2014:0804-1)
sendmail was updated to properly close file descriptors before executing programs. These security issues were fixed : - Not properly closing file descriptors before executing programs CVE-2014-3956. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in th...
Fedora Update for sendmail FEDORA-2014-7093
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[slackware-security] sendmail
New sendmail packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/sendmail-8.14.9-i486-1slack14.1.txz: Upgraded. This release fixes one security related bug by properly...