opendmarc 1.3.2-3ubuntu0.2 source package in Ubuntu
Changelog
opendmarc (1.3.2-3ubuntu0.2) bionic-security; urgency=medium
* SECURITY UPDATE: false authentication results
- debian/patches/CVE-2020-12272.patch: check syntaxes of domain names
passed to opendmarc_policy_store_spf() and
opendmarc_policy_store_dkim().
- CVE-2020-12272
* SECURITY UPDATE: heap overflow
- debian/patches/CVE-2020-12460.patch: ensure NULL-termination of the
buffer is passed to opendmarc_xml() from opendmarc_xml_parse().
- CVE-2020-12460
-- Allen Huang <email address hidden> Thu, 07 Sep 2023 14:33:58 +0100
Upload details
- Uploaded by:
- Allen Huang
- Uploaded to:
- Bionic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Bionic | updates | universe | misc | |
| Bionic | security | universe | misc |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| opendmarc_1.3.2.orig.tar.gz | 579.5 KiB | 213c4b01a9ff5dcdf331f7bd1dd6a382077abbf8ee9111852f2101ec917c2ffb |
| opendmarc_1.3.2-3ubuntu0.2.diff.gz | 27.1 KiB | 0511d686c4b79b6d3b83355839df4cfd8b0daba83a2bccf6467ce6b7885f42fc |
| opendmarc_1.3.2-3ubuntu0.2.dsc | 2.1 KiB | 728e07e1349018540d72ddcd0961657253b2a2a61d62431b011f0fb59d4197f2 |
Available diffs
Binary packages built by this source
- libopendmarc-dev: Headers and development libraries for the OpenDMARC library
Domain-based Message Authentication, Reporting and Conformance (DMARC),
builds on the successes of technologies such as DomainKeys Identified Mail
(DKIM) and the Sender Policy Framework (SPF) to create an infrastructure that
enforces policy on domain names that are visible to end users, and creates a
feedback framework for identifying and tracking fraudulent use of domain
names in email.
.
This package provides the required header files and development libraries for
developing against the OpenDMARC library.
- libopendmarc2: Library for DMARC validation and reporting
Domain-based Message Authentication, Reporting and Conformance (DMARC),
builds on the successes of technologies such as DomainKeys Identified Mail
(DKIM) and the Sender Policy Framework (SPF) to create an infrastructure that
enforces policy on domain names that are visible to end users, and creates a
feedback framework for identifying and tracking fraudulent use of domain
names in email.
.
This package provides library for implementing mail validation and reporting
for the experimental DMARC standard.
- libopendmarc2-dbgsym: debug symbols for libopendmarc2
- opendmarc: Milter implementation of DMARC
Domain-based Message Authentication, Reporting and Conformance (DMARC),
builds on the successes of technologies such as DomainKeys Identified Mail
(DKIM) and the Sender Policy Framework (SPF) to create an infrastructure that
enforces policy on domain names that are visible to end users, and creates a
feedback framework for identifying and tracking fraudulent use of domain
names in email. It uses OpenDBX as an interface layer to various SQL back
ends.
.
It provides the following new capabilities:
.
A binding between the domain name seen in the From: field of a message and
one or both of the domain names verified by DKIM and SPF;
.
The capability to request that receivers enforce strict message
authentication policy published by the author; and Comprehensive reporting,
both forensic and aggregate, regarding suspect messages.
.
This package contains the OpenDMARC mail filter (Milter) for plugging into
Milter-aware MTAs. It implements support for both message reject and DMARC
failure reporting.
- opendmarc-dbgsym: debug symbols for opendmarc
- rddmarc: Sample DMARC report processing scripts collection
There are currently three example scripts provided:
.
- rddmarc: Perl the script to parse DMARC summary reports
- mkdmarc - SQL to create the tables
- dmarcfail: Parses DMARC forensic reports from Netease and adds them to a
MySQL database to assist in further analysis.
