Lucene search

K
suseSuseSUSE-SA:2008:040
HistoryAug 14, 2008 - 2:39 p.m.

local privilege escalation in postfix

2008-08-1414:39:29
lists.opensuse.org
111

EPSS

0.001

Percentile

17.9%

Postfix is a well known MTA. During a source code audit the SuSE Security-Team discovered a local privilege escalation bug (CVE-2008-2936) as well as a mailbox ownership problem (CVE-2008-2937) in postfix. The first bug allowed local users to execute arbitrary commands as root while the second one allowed local users to read other users mail.

Solution

Please install the update package.