ROSA LABROSA-SA-2023-2210Advisory ROSA-SA-2023-2210
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%
Software: opensmtpd 7.3.0p0_rc2
OS: ROSA-CHROME
package_evr_string: opensmtpd-7.3.0p0_rc2-1.src.rpm
CVE-ID: CVE-2023-29323
BDU-ID: None
CVE-Crit: HIGH
CVE-DESC.: ascii_load_sockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable before 7.0.0.0-portable commit f748277, can be interrupted when connecting from a local IPv6 address with limited scope.
CVE-STATUS: Fixed
CVE-REV: To close, run the command: sudo dnf update opensmtpd
Related
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%