FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
76f1ce19-5749-11ea-bff8-c85b76ce9b5aOpenSMTPd -- Local information disclosure

Qualys reports:

We discovered a minor vulnerability in OpenSMTPD, OpenBSD's mail server: an unprivileged local attacker can read the first line of an arbitrary file (for example, root's password hash in /etc/master.passwd) or the entire contents of another user's file (if this file and /var/spool/smtpd/ are on the same filesystem).


Discovery 2020-02-24
Entry 2020-02-24
opensmtpd
lt 6.6.4,1

https://www.openwall.com/lists/oss-security/2020/02/24/4
CVE-2020-8793