AVG-1105 log
| Package | opensmtpd |
| Status | Fixed |
| Severity | Critical |
| Type | arbitrary command execution |
| Affected | 6.6.3p1-1 |
| Fixed | 6.6.4p1-1 |
| Current | 7.5.0p0-1 [extra] |
| Ticket | None |
| Created | Tue Feb 25 16:16:21 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-8794 | Critical | Yes | Arbitrary command execution | An out-of-bounds read vulnerability has been found in the client-side code of OpenSMTPD <= 6.6.3p1, leading to arbitrary command execution via a crafted... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 29 Feb 2020 | ASA-202002-13 | opensmtpd | arbitrary command execution |
| References |
|---|
https://www.qualys.com/2020/02/24/cve-2020-8794/lpe-rce-opensmtpd-default-install.txt |