* SECURITY UPDATE: SMTP smuggling (LP: #2049337)
- debian/patches/CVE-2023-51764.patch: introduced
`smtpd_forbid_bare_newline`. With "smtpd_forbid_bare_newline = yes",
the Postfix SMTP server disconnects a remote SMTP client that
sends a line ending in a 'bare newline'.
- CVE-2023-51764
-- Allen Huang <email address hidden> Fri, 19 Jan 2024 12:30:34 +0000
This bug was fixed in the package postfix - 3.8.1-2ubuntu0.1
---------------
postfix (3.8.1-2ubuntu0.1) mantic-security; urgency=medium
* SECURITY UPDATE: SMTP smuggling (LP: #2049337) patches/ CVE-2023- 51764.patch: introduced smtpd_forbid_ bare_newline` . With "smtpd_ forbid_ bare_newline = yes",
- debian/
`
the Postfix SMTP server disconnects a remote SMTP client that
sends a line ending in a 'bare newline'.
- CVE-2023-51764
-- Allen Huang <email address hidden> Fri, 19 Jan 2024 12:30:34 +0000