Re: [SECURITY] [DSA 1981-1] New maildrop packages fix privilege escalation

To: debian-security@lists.debian.org
Cc: Willi Mann <willi@wm1.at>
Subject: Re: [SECURITY] [DSA 1981-1] New maildrop packages fix privilege escalation
From: Steffen Joeris <steffen.joeris@skolelinux.de>
Date: Fri, 29 Jan 2010 00:59:50 +0100
Message-id: <[🔎] 201001290059.51209.steffen.joeris@skolelinux.de>
In-reply-to: <[🔎] 4B620436.5030709@wm1.at>
References: <20100128113752.56698848780@hannah.localdomain> <[🔎] 4B620436.5030709@wm1.at>

On Thu, 28 Jan 2010 10:40:06 pm Willi Mann wrote:
> Hi!
> 
> Did anybody check whether courier-maildrop is also affected by this
> issue? This should be the same codebase (same author), except maybe some
> different compile time options / different version.
courier-maildrop is not vulnerable to this issue as it sets certain variables 
that trigger the right code.

Cheers
Steffen

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to:

References:
- Re: [SECURITY] [DSA 1981-1] New maildrop packages fix privilege escalation
  - From: Willi Mann <willi@wm1.at>

Prev by Date: Re: On publishing/announcing end of security support
Next by Date: Re: SSP & Lenny
Previous by thread: Re: [SECURITY] [DSA 1981-1] New maildrop packages fix privilege escalation
Next by thread: RFH: ia32-libs security update
Index(es):
- Date
- Thread