Design/Logic Flaw

In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy...

PYSEC-2020-174

In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy...

UBUNTU-CVE-2019-16791

In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy...

PYSEC-2020-174

In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy...

PYSEC-2020-193

In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy...

CVE-2019-16791 downgrade of effective Strict Transport Security (STS) policy in postfix-mta-sts-resolver

In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy...

CVE-2019-16791

The issue CVE-2019-16791 affects postfix-mta-sts-resolver up to version 0.5.1. In affected releases, all users can receive an incorrect response from the daemon under rare conditions, enabling a downgrade of the effective STS policy. Connected advisories (Red Hat CVE, Debian security tracker, OSV...

CVE-2019-16791

In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy...

Postfix Admin Cross-Site Scripting Vulnerability (CNVD-2020-02708)

Postfix Admin is a web interface for configuring and managing Postfix-based email servers. A cross-site scripting vulnerability exists in Postfix Admin version 2.3.4. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit the...

[SECURITY] Fedora 31 Update: opendmarc-1.3.2-1.fc31

OpenDMARC Domain-based Message Authentication, Reporting & Conformance provides an open source library that implements the DMARC verification service plus a milter-based filter application that can plug in to any milter-aware MTA, including sendmail, Postfix, or any other MTA that suppor ts the...

postfix.1071664.n5.nabble.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1003039 Security Researcher Hchabik Helped patch 2375 vulnerabilities Received 5 Coordinated Disclosure badges Received 2 recommendations , a holder of 5 badges for responsible and coordinated disclosure, found a security vulnerability affecting postfix.1071664.n5.nabble.c...

GHSA-H92M-42H4-82F6 postfix-mta-sts-resolver Algorithm Downgrade vulnerability

Incorrect query parsing Impact All users of versions prior to 0.5.1 can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy. Patches Problem has been patched in version 0.5.1 Workarounds Users may remediate this vulnerability without upgrading...

postfix-mta-sts-resolver Algorithm Downgrade vulnerability

Incorrect query parsing Impact All users of versions prior to 0.5.1 can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy. Patches Problem has been patched in version 0.5.1 Workarounds Users may remediate this vulnerability without upgrading...

libdb: Reads DB_CONFIG from the current working directory

Postfix before 2.11.10, 3.0.x before 3.0.10, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 might allow local users to gain privileges by leveraging undocumented functionality in Berkeley DB 2.x and later, related to reading settings from DBCONFIG in the current directory...

mail/dovecot -- Suitable client certificate can be used to login as other user

Aki Tuomi Open-Xchange Oy reports: Normally Dovecot is configured to authenticate imap/pop3/managesieve/submission clients using regular username/password combination. Some installations have also required clients to present a trusted SSL certificate on top of that. It's also possible to configur...

[SECURITY] Fedora 27 Update: spamassassin-3.4.2-2.fc27

SpamAssassin provides you with a way to reduce if not completely eliminate Unsolicited Commercial Email SPAM from your incoming email. It can be invoked by a MDA such as sendmail or postfix, or can be called from a procmail script, .forward file, etc. It uses a genetic-algorithm evolved scoring...

[SECURITY] Fedora 28 Update: spamassassin-3.4.2-2.fc28

SpamAssassin provides you with a way to reduce if not completely eliminate Unsolicited Commercial Email SPAM from your incoming email. It can be invoked by a MDA such as sendmail or postfix, or can be called from a procmail script, .forward file, etc. It uses a genetic-algorithm evolved scoring...

EulerOS 2.0 SP3 : postfix (EulerOS-SA-2018-1205)

According to the version of the postfix packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Postfix before 2.11.10, 3.0.x before 3.0.10, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 might allow local users to gain privileges by leveraging...

EulerOS 2.0 SP2 : postfix (EulerOS-SA-2018-1204)

According to the version of the postfix packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Postfix before 2.11.10, 3.0.x before 3.0.10, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 might allow local users to gain privileges by leveraging...

Postfix Berkeley DB Read Database Vulnerability

Postfix is a mail transfer agent used in Unix-like operating systems.Berkeley DB is a file database software. A security vulnerability exists in Berkeley DB 2.x and later versions in Postfix. A local attacker can exploit this vulnerability to gain privileges...