opensmtpd 6.6.4p1-1 source package in Ubuntu


opensmtpd (6.6.4p1-1) unstable; urgency=high

  * New upstream release fixes critical security bug (Closes: #952453).
    Quoting from OpenBSD errata:

        An out of bounds read in smtpd allows an attacker to inject arbitrary
        commands into the envelope file which are then executed as root.

        Separately, missing privilege revocation in smtpctl allows arbitrary
        commands to be run with the _smtpq group.

  * Update copyright file with new copyright holders
  * Remove stale entries from Uploaders field

 -- Ryan Kavanagh <email address hidden>  Mon, 24 Feb 2020 12:20:52 -0500

Upload details

Uploaded by:
Ryan Kavanagh on 2020-02-24
Uploaded to:
Original maintainer:
Ryan Kavanagh
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section
Focal release on 2020-03-01 universe misc


File Size SHA-256 Checksum
opensmtpd_6.6.4p1-1.dsc 2.9 KiB f63089e921c53d552e9e6370c202c953c48fcff1c242e5277d5a1241a9e3626b
opensmtpd_6.6.4p1.orig.tar.gz 772.2 KiB e2f9962a6b99b3cc1572b63a10db648fdca4ad2b58079b680b4202cc7c82d7cf
opensmtpd_6.6.4p1-1.debian.tar.xz 25.6 KiB 425d63c270d943609709af7eda16dd2b7da225ebe78e2ef8217dde9e0b8e7c06

Available diffs

No changes file available.

Binary packages built by this source

opensmtpd: secure, reliable, lean, and easy-to configure SMTP server

 The OpenSMTPD server seeks to be
  * as secure as possible, and uses privilege separation to mitigate
    possible security bugs
  * as reliable as possible: any accepted email must not be lost
  * lean: it covers typical usage cases instead of every obscure one
  * easy to configure, with a configuration syntax reminiscent of the OpenBSD
    Packet Filter's (PF)
  * fast and efficient: it can handle large queues with reasonable performance

opensmtpd-dbgsym: debug symbols for opensmtpd