Your submission was sent successfully! Close

USN-642-1: Postfix vulnerability

10 September 2008

Postfix vulnerability




Wietse Venema discovered that Postfix leaked internal file descriptors
when executing non-Postfix commands. A local attacker could exploit
this to cause Postfix to run out of descriptors, leading to a denial
of service.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 8.04
Ubuntu 7.10

In general, a standard system upgrade is sufficient to effect the
necessary changes.