Mandriva Linux Security Advisory : sendmail (MDVSA-2014:147)
Low Nessus Plugin ID 76954
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated sendmail packages fix security vulnerability :
Sendmail before 8.14.9 does not properly closing file descriptors before executing programs. This bug could enable local users to interfere with an open SMTP connection if they can execute their own program for mail delivery (e.g., via procmail or the prog mailer) (CVE-2014-3956).
SolutionUpdate the affected packages.