OBSOLETE Patch-ID# 101371-04 Keywords: sendmail security .forward headers Synopsis: OBSOLETED by 101739 Date: Feb/11/1994 *** OBSOLETED PATCH *** Solaris Release: 2.3 SunOS Release: 5.3 Unbundled Product: Unbundled Release: Xref: Topic: Relevant Architectures: sparc BugId's fixed with this patch: 1142840 1145035 1149201 1151181 1151181 1152199 Changes incorporated in this version: 1149201 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: 101739 101739 on Jul/26/94 Files included with this patch: usr/lib/sendmail usr/lib/sendmail.mx Problem Description: 1149201 wrong header information appears on e-mail heading on a sporadic basis wrong header information appears on e-mail heading on a sporadic basis (from 101371-03) 1151181 sendmail security 1152199 sendmail .forward capability can bypass read permissions two more security hole was reported since the last security patch was issued. The hole allows unauthorized access to (system) files via e-mail. This patch fix bug 1152199, and also provide a improved fix for 1151181. (from 101371-02) 1151181 sendmail security (from 101371-01) 1142840 Sendmail ignores $HOME parameter in .forward file 1145035: sendmail can not deliver to dead.letter file Patch Installation Instructions: -------------------------------- Generic ''installpatch'' and ''backoutpatch'' scripts are provided within each patch package with instructions appended to this section. Other specific or unique installation instructions may also be necessary and should be described below. Special Install Instructions: ----------------------------- none