OpenSMTPD v6.6.4.p1

Version Release Notes from February 24, 2020 (about 4 years ago)

« Changelog History

OpenSMTPD v6.6.4.p1 Release Notes

Release Date: 2020-02-24 // about 4 years ago

🚀 SECURITY RELEASE

An out of bounds read in smtpd allows an attacker to inject arbitrary commands into the envelope file which are then executed as root. Separately, missing privilege revocation in smtpctl allows arbitrary commands to be run with the _smtpq group.

Awesome Self Hosted is part of the LibHunt network. Terms. Privacy Policy.