remote Denial of Service (DoS) attack in postfix

2003-08-0412:19:27

lists.opensuse.org

0.077 Low

EPSS

Percentile

94.2%

JSON

Postfix is a flexible MTA replacement for sendmail. Michal Zalewski has reported problems in postfix which can lead to a remote DoS attack or allow attackers to bounce-scan private networks. These problems have been fixed. Even though not all of our products are vulnerable in their default configurations, the updates should be applied.

OSVersionArchitecturePackageVersionFilename
openSUSE8.1i586postfix< 1.1.12-12postfix-1.1.12-12.i586.rpm
openSUSE7.2i386postfix< 20010228pl03-82postfix-20010228pl03-82.i386.rpm
openSUSE8.0i386postfix< 1.1.12-13postfix-1.1.12-13.i386.rpm
openSUSE7.3sparcpostfix< 20010228pl08-15postfix-20010228pl08-15.sparc.rpm
openSUSE7.3i386postfix< 20010228pl08-22postfix-20010228pl08-22.i386.rpm
openSUSE7.3ppcpostfix< 20010228pl08-36postfix-20010228pl08-36.ppc.rpm

OS	Version	Architecture	Package	Version	Filename
openSUSE	8.1	i586	postfix	< 1.1.12-12	postfix-1.1.12-12.i586.rpm
openSUSE	7.2	i386	postfix	< 20010228pl03-82	postfix-20010228pl03-82.i386.rpm
openSUSE	8.0	i386	postfix	< 1.1.12-13	postfix-1.1.12-13.i386.rpm
openSUSE	7.3	sparc	postfix	< 20010228pl08-15	postfix-20010228pl08-15.sparc.rpm
openSUSE	7.3	i386	postfix	< 20010228pl08-22	postfix-20010228pl08-22.i386.rpm
openSUSE	7.3	ppc	postfix	< 20010228pl08-36	postfix-20010228pl08-36.ppc.rpm

0.077 Low

EPSS

Percentile

94.2%

JSON

Related for SUSE-SA:2003:033