Information on source package opensmtpd

Available versions

ReleaseVersion
stretch6.0.2p1-2+deb9u2
stretch (security)6.0.2p1-2+deb9u3
buster6.0.3p1-5+deb10u4
bullseye6.7.1p1-2
sid6.7.1p1-2

Resolved issues

BugDescription
TEMP-0950121-6A81FCopensmtpd DoS via opportunistic TLS downgrade
TEMP-0000000-E57E4ERemotely triggerable buffer overflow in OpenSMTPD
CVE-2020-8794OpenSMTPD before 6.6.4 allows remote code execution because of an out- ...
CVE-2020-8793OpenSMTPD before 6.6.4 allows local users to read arbitrary files (e.g ...
CVE-2020-7247smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6 ...
CVE-2015-7687Use-after-free vulnerability in OpenSMTPD before 5.7.2 allows remote a ...
CVE-2013-2125OpenSMTPD before 5.3.2 does not properly handle SSL sessions, which al ...

Security announcements

DSA / DLADescription
DSA-4634-1opensmtpd - security update
DSA-4611-1opensmtpd - security update

Search for package or bug name: Reporting problems