CVE-2014-3956
CVE-2014-3956
The sm_close_on_exec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FD_CLOEXEC flags, which allows local users to access unintended high-numbered file descriptors via a custom mail-delivery program.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
ftp://ftp.sendmail.org/pub/sendmail/RELEASE_NOTEShttp://advisories.mageia.org/MGASA-2014-0270.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2014-June/134349.htmlhttp://lists.opensuse.org/opensuse-updates/2014-06/msg00032.htmlhttp://lists.opensuse.org/opensuse-updates/2014-06/msg00033.htmlhttp://packetstormsecurity.com/files/126975/Slackware-Security-Advisory-sendmail-Updates.htmlhttp://secunia.com/advisories/57455http://secunia.com/advisories/58628http://security.gentoo.org/glsa/glsa-201412-32.xmlhttps://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05216368http://www.freebsd.org/security/advisories/FreeBSD-SA-14%3A11.sendmail.aschttp://www.mandriva.com/security/advisories?name=MDVSA-2014:147