Debian DSA-1164-1 : sendmail - programming error
Medium Nessus Plugin ID 22706
SynopsisThe remote Debian host is missing a security-related update.
DescriptionA programming error has been discovered in sendmail, an alternative mail transport agent for Debian, that could allow a remote attacker to crash the sendmail process by sending a specially crafted email message.
Please note that in order to install this update you also need libsasl2 library from proposed updates as outlined in DSA 1155-2.
SolutionUpgrade the sendmail package.
For the stable distribution (sarge) this problem has been fixed in version 8.13.3-3sarge3.