OPENSUSE-SU-2021:0669-1 Security update for postsrsd

This update for postsrsd fixes the following issues: Update to release 1.11 boo1180251 Drop group privileges as well as user privileges Fixed: The subprocess that talks to Postfix could be caused to hang with a very long email address. CVE-2020-35573 Update to release 1.6 Fix endianness issue wit...

openSUSE: Security Advisory for postsrsd (openSUSE-SU-2021:0646-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2021:0646-1 Security update for postsrsd

This update for postsrsd fixes the following issues: Update to release 1.11 boo1180251 Drop group privileges as well as user privileges Fixed: The subprocess that talks to Postfix could be caused to hang with a very long email address. CVE-2020-35573 Update to release 1.6 Fix endianness issue wit...

Security update for postsrsd (moderate)

openSUSE Security Update: Security update for postsrsd Announcement ID: openSUSE-SU-2021:0646-1 Rating: moderate References: 1180251 Cross-References: CVE-2020-35573 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for postsrs...

The vulnerability in the function of the file srs2.c in the PostSRSd package allows a hacker to cause a service failure.

The vulnerability in the srs2.c file of the PostSRSd package involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause a service failure consumption of computing resources by using a tag with a time stamp in the SRS address...

Ubuntu: Security Advisory (USN-4730-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 18.04 LTS : PostSRSd vulnerability (USN-4730-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-4730-1 advisory. It was discovered that PostSRSd mishandled certain input. A remote attacker could use this vulnerability to cause a denial of service via a long timestamp tag in ...

USN-4730-1: PostSRSd vulnerability

It was discovered that PostSRSd mishandled certain input. A remote attacker could use this vulnerability to cause a denial of service via a long timestamp tag in an SRS address...

USN-4730-1 postsrsd vulnerability

It was discovered that PostSRSd mishandled certain input. A remote attacker could use this vulnerability to cause a denial of service via a long timestamp tag in an SRS address...

FreeBSD : postsrsd -- Denial of service vulnerability (eb2845c4-43ce-11eb-aba5-00a09858faf5)

postsrsd developer reports : PostSRSd could be tricked into consuming a lot of CPU time with an SRS address that has an excessively long time stamp tag. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyrig...

Debian: Security Advisory (DLA-2502-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-2502-1 : postsrsd security update

A potential denial of service attack through malicious timestamp tags was fixed in PostSRSd, a Sender Rewriting Scheme SRS lookup table for Postfix. For Debian 9 stretch, this problem has been fixed in version 1.4-1+deb9u1. We recommend that you upgrade your postsrsd packages. For the detailed...

[SECURITY] [DLA 2502-1] postsrsd security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2502-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk December 20, 2020 https://wiki.debian.org/LTS -...

Denial Of Service (DoS)

postsrsd is vulnerable to denial of service DoS. The vulnerability exists as srs2.c allows remote attackers to cause a denial of service CPU consumption via a long timestamp tag in an SRS address...

DEBIAN-CVE-2020-35573

srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service CPU consumption via a long timestamp tag in an SRS address...

CVE-2020-35573

srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service CPU consumption via a long timestamp tag in an SRS address...

CVE-2020-35573

srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service CPU consumption via a long timestamp tag in an SRS address...

Code injection

srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service CPU consumption via a long timestamp tag in an SRS address...

CVE-2020-35573

srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service CPU consumption via a long timestamp tag in an SRS address...

UBUNTU-CVE-2020-35573

srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service CPU consumption via a long timestamp tag in an SRS address...