---------------------------------------------------------------------- Secunia integrated with Microsoft WSUS http://secunia.com/blog/71/ ---------------------------------------------------------------------- TITLE: SUSE update for postfix SECUNIA ADVISORY ID: SA38535 VERIFY ADVISORY: http://secunia.com/advisories/38535/ DESCRIPTION: SUSE has issued an update for postfix. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service). The weakness is caused due to the postfix "SMTPD_LISTEN_REMOTE" setting defaulting to "yes", which can be exploited to e.g. cause a DoS. SOLUTION: Apply updated packages. x86 Platform: openSUSE 11.2: http://download.opensuse.org/debug/update/11.2/rpm/i586/postfix-debuginfo-2.6.1-2.6.1.i586.rpm http://download.opensuse.org/debug/update/11.2/rpm/i586/postfix-debugsource-2.6.1-2.6.1.i586.rpm http://download.opensuse.org/debug/update/11.2/rpm/i586/postfix-mysql-debuginfo-2.6.1-2.6.1.i586.rpm http://download.opensuse.org/debug/update/11.2/rpm/i586/postfix-postgresql-debuginfo-2.6.1-2.6.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/postfix-2.6.1-2.6.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/postfix-devel-2.6.1-2.6.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/postfix-doc-2.6.1-2.6.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/postfix-mysql-2.6.1-2.6.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/postfix-postgresql-2.6.1-2.6.1.i586.rpm x86-64 Platform: openSUSE 11.2: http://download.opensuse.org/debug/update/11.2/rpm/x86_64/postfix-debuginfo-2.6.1-2.6.1.x86_64.rpm http://download.opensuse.org/debug/update/11.2/rpm/x86_64/postfix-debugsource-2.6.1-2.6.1.x86_64.rpm http://download.opensuse.org/debug/update/11.2/rpm/x86_64/postfix-mysql-debuginfo-2.6.1-2.6.1.x86_64.rpm http://download.opensuse.org/debug/update/11.2/rpm/x86_64/postfix-postgresql-debuginfo-2.6.1-2.6.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/postfix-2.6.1-2.6.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/postfix-devel-2.6.1-2.6.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/postfix-doc-2.6.1-2.6.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/postfix-mysql-2.6.1-2.6.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/postfix-postgresql-2.6.1-2.6.1.x86_64.rpm Sources: openSUSE 11.2: http://download.opensuse.org/update/11.2/rpm/src/postfix-2.6.1-2.6.1.src.rpm PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. ORIGINAL ADVISORY: SUSE-SA:2010:011: http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00004.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------