Go Back   Singapore Web Hosting Talk > LEARNING CENTER > Others

Others Other guides/howtos.

Reply
 
Thread Tools
Old 08-03-2003, 17:22   #1
Duskette
SGWHT Moderator
 
Join Date: 12-07-2002
Location: Singapore
Posts: 465
Duskette has a spectacular aura aboutDuskette has a spectacular aura about
HOWTO : Ensim : Upgrade from 3.1.6 to 3.1.7-2 : My Simple HOWTO

WEBppliance 3.1.7-2 Security Patch (LS) Released

Ensim Has released a new update!

You can view the entire document online here:

http://onlinesupport.ensim.com/TWKB/...uleID=660&QS=S

--
Sendmail Buffer Error
Solution:

WEBppliance 3.1.7 provides a security patch that resolves the Sendmail vulnerability

Compatibility :

This patch requires WEBppliance 3.1.6 for Linux to be installed on your server.

NOTE: This patch will not install on any other version of WEBppliance for Linux, other than 3.1.6.

Major Features of WEBppliance 3.1.7
This patch addresses and fixes the security vulnerability mentioned below:

Sendmail vulnerability that may allow remote attackers to gain root privileges by sending a carefully crafted message.

Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via a certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c.

Advisory details for the security patch are available at the following URL:
http://cve.mitre.org/cgi-bin/cvename...=CAN-2002-1337

Installation Instructions :

Download site: (be sure to download using BINARY mode)
ftp://ftp.ensim.com/download/webppli...3.1.7-2.tar.gz


To install the patch please follow the instructions below :

1. Download the file LS-3.1.7-2.tar.gz

2. Uncompress the file:
tar -xvzf LS-3.1.7-2.tar.gz

3. Change the current directory to the directory
where you have uncompressed the file:
cd LS-3.1.7-2

4. Run the following command
# sh ./patch-install-3.1.7-2.sh

The install script verifies the current installation of WEBppliance to ensure that it complies with the patch requirements and then upgrades the required RPMs (requires root access).

END 3.1.7-2 - UPDATE
Duskette is offline   Reply With Quote

Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump




All times are GMT +8. The time now is 13:21.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2017, vBulletin Solutions, Inc.
Copyright (C) 2002-2015 Brought to you by Singapore Web Hosting Talk (SGWHT). All Rights Reserved.