FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- sendmail improper close-on-exec flag handling

Affected packages
10.0 <= FreeBSD < 10.0_4
9.2 <= FreeBSD < 9.2_7
9.1 <= FreeBSD < 9.1_14
8.4 <= FreeBSD < 8.4_11

Details

VuXML ID 6d9eadaf-6007-11e6-a6c3-14dae9d210b8
Discovery 2014-06-03
Entry 2016-08-11

Problem Description:

There is a programming error in sendmail(8) that prevented open file descriptors have close-on-exec properly set. Consequently a subprocess will be able to access all open files that the parent process have open.

Impact:

A local user who can execute their own program for mail delivery will be able to interfere with an open SMTP connection.

References

FreeBSD Advisory SA-14:11.sendmail

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.