MDVSA-2009:224 -- Mandriva postfixID: oval:org.secpod.oval:def:300456 | Date: (C)2012-01-07 (M)2021-06-02 |
Class: PATCH | Family: unix |
A vulnerability has been found and corrected in postfix: Postfix 2.5 before 2.5.4 and 2.6 before 2.6-20080814 delivers to a mailbox file even when this file is not owned by the recipient, which allows local users to read e-mail messages by creating a mailbox file corresponding to another user"s account name . This update provides a solution to this vulnerability.
Platform: |
Mandriva Linux 2008.1 |