Buffer Overflow in MIMEDefang
In their release notes for version 2.61 of MIMEDefang, a filter framework for sendmail, the developers Roaring Penguin say that earlier versions contained a programming error that could lead to a buffer overflow. Attackers could then cause a denial of service or even inject malicious code. The notes don't provide any additional details on the hole. The flaw is found in versions 2.59 and 2.60 of the software, but not in the current version 2.61.
- Download the current version of MIMEDefang without the flaw
- Change log for MIMEDefang 2.6.1
(trk)