A programming error has been discovered in sendmail, an alternative mail transport agent for Debian, that could allow a remote attacker to crash the sendmail process by sending a specially crafted email message. Please note that in order to install this update you also need libsasl2 library from proposed updates as outlined in DSA 1155-2. For the stable distribution (sarge) this problem has been fixed in version 8.13.3-3sarge3. For the unstable distribution (sid) this problem has been fixed in version 8.13.8-1. We recommend that you upgrade your sendmail package.
A programming error has been discovered in sendmail, an alternative mail transport agent for Debian, that could allow a remote attacker to crash the sendmail process by sending a specially crafted email message.
Please note that in order to install this update you also need libsasl2 library from proposed updates as outlined in DSA 1155-2.
For the stable distribution (sarge) this problem has been fixed in version 8.13.3-3sarge3.
For the unstable distribution (sid) this problem has been fixed in version 8.13.8-1.
We recommend that you upgrade your sendmail package.
MD5 checksums of the listed files are available in the original advisory.