CVE-2020-8794 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Critical
Remote	Yes
Type	Arbitrary command execution
Description	An out-of-bounds read vulnerability has been found in the client-side code of OpenSMTPD <= 6.6.3p1, leading to arbitrary command execution via a crafted SMTP transaction.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-1105	opensmtpd	6.6.3p1-1	6.6.4p1-1	Critical	Fixed

Date	Advisory	Group	Package	Severity	Type
29 Feb 2020	ASA-202002-13	AVG-1105	opensmtpd	Critical	arbitrary command execution

References
https://www.qualys.com/2020/02/24/cve-2020-8794/lpe-rce-opensmtpd-default-install.txt