FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
08f5c27d-4326-11ea-af8b-00155d0a0200OpenSMTPd -- critical LPE / RCE vulnerability

OpenSMTPD developers report:

An incorrect check allows an attacker to trick mbox delivery into executing arbitrary commands as root and lmtp delivery into executing arbitrary commands as an unprivileged user


Discovery 2020-01-28
Entry 2020-01-29
opensmtpd
ge 6.4.0,1 lt 6.6.2,1

CVE-2020-7247
https://www.openwall.com/lists/oss-security/2020/01/28/3