Information on source package opensmtpd

Available versions

ReleaseVersion
bullseye6.8.0p2-3
bookworm6.8.0p2-4
trixie7.5.0p0-1
sid7.5.0p0-1

Open issues

BugbullseyebookwormtrixiesidDescription
CVE-2023-29323vulnerable (no DSA)vulnerable (no DSA)fixedfixedascii_load_sockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 ...

Resolved issues

BugDescription
TEMP-0950121-6A81FCopensmtpd DoS via opportunistic TLS downgrade
TEMP-0000000-E57E4ERemotely triggerable buffer overflow in OpenSMTPD
CVE-2020-35680smtpd/lka_filter.c in OpenSMTPD before 6.8.0p1, in certain configurati ...
CVE-2020-35679smtpd/table.c in OpenSMTPD before 6.8.0p1 lacks a certain regfree, whi ...
CVE-2020-8794OpenSMTPD before 6.6.4 allows remote code execution because of an out- ...
CVE-2020-8793OpenSMTPD before 6.6.4 allows local users to read arbitrary files (e.g ...
CVE-2020-7247smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6 ...
CVE-2015-7687Use-after-free vulnerability in OpenSMTPD before 5.7.2 allows remote a ...
CVE-2013-2125OpenSMTPD before 5.3.2 does not properly handle SSL sessions, which al ...

Security announcements

DSA / DLADescription
DSA-4634-1opensmtpd - security update
DSA-4611-1opensmtpd - security update

Search for package or bug name: Reporting problems