opensmtpd (6.6.4p1-1) unstable; urgency=high
* New upstream release fixes critical security bug (Closes: #952453).
Quoting from OpenBSD errata:
An out of bounds read in smtpd allows an attacker to inject arbitrary
commands into the envelope file which are then executed as root.
Separately, missing privilege revocation in smtpctl allows arbitrary
commands to be run with the _smtpq group.
* Update copyright file with new copyright holders
* Remove stale entries from Uploaders field
-- Ryan Kavanagh <email address hidden> Mon, 24 Feb 2020 12:20:52 -0500
secure, reliable, lean, and easy-to configure SMTP server
debug symbols for opensmtpd