AVG-1105 log

Package opensmtpd
Status Fixed
Severity Critical
Type arbitrary command execution
Affected 6.6.3p1-1
Fixed 6.6.4p1-1
Current 7.5.0p0-2 [extra]
Ticket None
Created Tue Feb 25 16:16:21 2020
Issue Severity Remote Type Description
CVE-2020-8794 Critical Yes Arbitrary command execution
An out-of-bounds read vulnerability has been found in the client-side code of OpenSMTPD <= 6.6.3p1, leading to arbitrary command execution via a crafted...
Date Advisory Package Type
29 Feb 2020 ASA-202002-13 opensmtpd arbitrary command execution
References
https://www.qualys.com/2020/02/24/cve-2020-8794/lpe-rce-opensmtpd-default-install.txt