FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
08f5c27d-4326-11ea-af8b-00155d0a0200OpenSMTPd -- critical LPE / RCE vulnerability

OpenSMTPD developers report:

An incorrect check allows an attacker to trick mbox delivery into executing arbitrary commands as root and lmtp delivery into executing arbitrary commands as an unprivileged user


Discovery 2020-01-28
Entry 2020-01-29
opensmtpd
ge 6.4.0,1 lt 6.6.2,1

CVE-2020-7247
https://www.openwall.com/lists/oss-security/2020/01/28/3