Bug 143900

Summary: postfix segfaults when hostname unknown
Product: [Fedora] Fedora Reporter: Mike Bird <mgb>
Component: postfixAssignee: Thomas Woerner <twoerner>
Status: CLOSED DUPLICATE QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: 3CC: ag1234, chris.ricker, petri.koistinen, robn
Target Milestone: ---   
Target Release: ---   
Hardware: i386   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2006-02-21 19:07:49 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Mike Bird 2004-12-31 23:05:51 UTC 
Postfix segfaults if the hostname cannot be found in DNS.

Since the DNS response is not safely checked an exploit may be possible.

Version-Release number of selected component (if applicable):
2.1.5-2.4.FC3

How reproducible:
Always

Steps to Reproduce:
# hostname foo.bar
# service postfix restart


Actual Results:
Shutting down postfix: /etc/init.d/postfix: line 58: 10620
Segmentation fault    /usr/sbin/postfix stop 2>/dev/null 1>&2
                                                           [FAILED]
Starting postfix: /etc/init.d/postfix: line 34: 10628 Segmentation
fault      /usr/sbin/postalias ${alias_database//,} 2>/dev/null
                                                           [FAILED]


Expected Results:
Shutting down postfix:                                     [  OK  ]
Starting postfix:                                          [  OK  ]
Comment 1 Rob van Nieuwkerk 2005-01-27 23:44:40 UTC 
FYI:
I saw something on the postfix developers list that suggests that
this bug is caused by a (not so smart according to Wietse Venema ..)
change to the stock postfix code by Red Hat.  See these postings:

    http://article.gmane.org/gmane.mail.postfix.devel/316
    http://article.gmane.org/gmane.mail.postfix.devel/317
    http://article.gmane.org/gmane.mail.postfix.devel/318
    http://article.gmane.org/gmane.mail.postfix.devel/319
Comment 2 Chris Ricker 2005-01-28 15:15:39 UTC 
Is there any reason to include the postfix-hostname-fqdn.patch in
question? I've never found it necessary....
Comment 3 Chris Ricker 2005-01-28 16:19:49 UTC 

*** This bug has been marked as a duplicate of 139983 ***
Comment 4 Red Hat Bugzilla 2006-02-21 19:07:49 UTC 
Changed to 'CLOSED' state since 'RESOLVED' has been deprecated.