Patching Sendmail
If you do not use
SendmailTM 8.12.10
then you must apply the following security patch.
Notice: after you applied the appropriate patch as explained below,
you must recompile sendmail and install the new binary.
See the instructions for your sendmail versions how to do that.
To apply the
patch
for sendmail
perform these steps:
Store the patch in a file called
"/PATH/TO/parse8.359.2.8"
(replace "/PATH/TO" with a path of your choice),
check the
PGP
signature
or at least the MD5 checksum:
7a8a550f2b82ee9ef78dadc99177d84c,
and apply the following
command in the sendmail-VERSION/sendmail/ directory.
cd sendmail-VERSION/sendmail
patch < /PATH/TO/parse8.359.2.8
You should also edit the file
It might also be useful to edit the file
sendmail/version.c
and change the version
number to indicate that you changed sendmail. We suggest to add the
date, e.g., change "8.12.9" to "8.12.9-20030924". Then recompile
sendmail, install the new binary, and restart the daemon.
Note: make sure your patch program understands these diffs.
Some versions
can not deal with them.
In that case install GNU patch (on Solaris: try gpatch).
