Vulmon
<!--X-Body-Begin-->
<!--X-User-Header-->
oss-sec
mailing list archives
<!--X-User-Header-End-->
<!--X-TopPNI-->
By Date
By Thread
</form>
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
Re: LPE and RCE in OpenSMTPD's default install (CVE-2020-8794)
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
From: Florian Weimer <fweimer () redhat com>
Date: Sun, 01 Mar 2020 11:07:35 +0100
<!--X-Head-of-Message-End-->
<!--X-Head-Body-Sep-Begin-->
<!--X-Head-Body-Sep-End-->
<!--X-Body-of-Message-->
* Alexander E. Patrakov:
Just in case, I would like to complain here that my Fedora 31 systems
have not received an update.
There is indeed something in testing, but it is (mistakenly?) marked
as a bugfix release and not as a security update:
https://bodhi.fedoraproject.org/updates/?packages=opensmtpd
I have edited the update and flagged it as security.
However, without feedback from community testing (karma), this update
cannot be pushed at this time.
The package also failed to build on Fedora 32 and 33/rawhide due to C
conformance issues, so there are no updates available there.
Thanks,
Florian
<!--X-Body-of-Message-End-->
<!--X-MsgBody-End-->
<!--X-Follow-Ups-->
<!--X-Follow-Ups-End-->
<!--X-References-->
<!--X-References-End-->
<!--X-BotPNI-->
By Date
By Thread
Current thread:
LPE and RCE in OpenSMTPD's default install (CVE-2020-8794) Qualys Security Advisory (Feb 24)
Re: LPE and RCE in OpenSMTPD's default install (CVE-2020-8794) Alexander E. Patrakov (Feb 24)
Re: LPE and RCE in OpenSMTPD's default install (CVE-2020-8794) Qualys Security Advisory (Feb 25)
Re: LPE and RCE in OpenSMTPD's default install (CVE-2020-8794) Qualys Security Advisory (Feb 26)
Re: LPE and RCE in OpenSMTPD's default install (CVE-2020-8794) Alexander E. Patrakov (Feb 29)
Re: LPE and RCE in OpenSMTPD's default install (CVE-2020-8794) Florian Weimer (Mar 01)
<!--X-BotPNI-End-->
<!--X-User-Footer-->
<!--X-User-Footer-End-->