[Git][security-tracker-team/security-tracker][master] Track as well fixes for CVE-2020-8793
Salvatore Bonaccorso
carnil at debian.org
Wed Feb 26 21:44:48 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f82dd62c by Salvatore Bonaccorso at 2020-02-26T22:44:00+01:00
Track as well fixes for CVE-2020-8793
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1437,6 +1437,8 @@ CVE-2020-8794 (OpenSMTPD before 6.6.4 allows remote code execution because of an
NOTE: https://www.openwall.com/lists/oss-security/2020/02/26/1
CVE-2020-8793 (OpenSMTPD before 6.6.4 allows local users to read arbitrary files (e.g ...)
- opensmtpd 6.6.4p1-1 (unimportant; bug #952453)
+ [buster] - opensmtpd 6.0.3p1-5+deb10u4
+ [stretch] - opensmtpd 6.0.2p1-2+deb9u3
NOTE: https://www.openwall.com/lists/oss-security/2020/02/24/4
NOTE: https://ftp.openbsd.org/pub/OpenBSD/patches/6.6/common/021_smtpd_envelope.patch.sig
NOTE: https://poolp.org/posts/2020-01-30/opensmtpd-advisory-dissected/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f82dd62cf65f9b5325ec35343b4b1f5551bbfe20
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f82dd62cf65f9b5325ec35343b4b1f5551bbfe20
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200226/9c126b6e/attachment.html>
More information about the debian-security-tracker-commits
mailing list