Sendmail 8.10.0 through 8.11.5, and 8.12.0 beta, allows local users to modify process memory and possibly gain privileges via a large value in the category part of debugger (-d) command line arguments, which is interpreted as a negative number.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Sendmail | Sendmail | 8.11.0 (including) | 8.11.0 (including) |
| Sendmail | Sendmail | 8.11.1 (including) | 8.11.1 (including) |
| Sendmail | Sendmail | 8.11.2 (including) | 8.11.2 (including) |
| Sendmail | Sendmail | 8.11.3 (including) | 8.11.3 (including) |
| Sendmail | Sendmail | 8.11.4 (including) | 8.11.4 (including) |
| Sendmail | Sendmail | 8.11.5 (including) | 8.11.5 (including) |
| Sendmail | Sendmail | 8.12-beta10 (including) | 8.12-beta10 (including) |
| Sendmail | Sendmail | 8.12-beta12 (including) | 8.12-beta12 (including) |
| Sendmail | Sendmail | 8.12-beta16 (including) | 8.12-beta16 (including) |
| Sendmail | Sendmail | 8.12-beta5 (including) | 8.12-beta5 (including) |
| Sendmail | Sendmail | 8.12-beta7 (including) | 8.12-beta7 (including) |
| Red Hat Linux 5.2 | RedHat | * | |
| Red Hat Linux 6.2 | RedHat | * | |
| Red Hat Linux 7.0 | RedHat | * | |
| Red Hat Linux 7.1 | RedHat | * |