3 matches found
Fedora 33 : opensmtpd (2021-848fd34b0b)
The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-848fd34b0b advisory. - smtpd/table.c in OpenSMTPD before 6.8.0p1 lacks a certain regfree, which might allow attackers to trigger a very significant memory leak via...
[ASA-202101-18] opensmtpd: multiple issues
Arch Linux Security Advisory ASA-202101-18 ========================================== Severity: High Date : 2021-01-12 CVE-ID : CVE-2020-35679 CVE-2020-35680 Package : opensmtpd Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1381 Summary ======= The package opensmtp...
CVE-2020-35679
OpenSMTPD has two CVEs associated with older releases prior to 6.8.0p1: CVE-2020-35679: In smtpd/table.c, a regfree issue can allow an attacker to trigger a very significant memory leak by sending messages to an instance performing many regex lookups. CVE-2020-35680: In certain configurations, sm...