Debian Security Advisory 4526-1

Debian Security Advisory 4526-1: Posted Sep 20, 2019; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4526-1 - It was discovered that OpenDMARC, a milter implementation of DMARC, is prone to a signature-bypass vulnerability with multiple From: addresses.; tags | advisory, bypass; systems | linux, debian; advisories | CVE-2019-16378; SHA-256 | ec525423f1077034de90a5f36fdee07877ae474785775598730de51a085143e8; Download | Favorite | View

Debian Security Advisory 4526-1

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4526-1                   security@debian.org
https://www.debian.org/security/                     Salvatore Bonaccorso
September 19, 2019                    https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : opendmarc
CVE ID         : CVE-2019-16378
Debian Bug     : 940081

It was discovered that OpenDMARC, a milter implementation of DMARC, is
prone to a signature-bypass vulnerability with multiple From: addresses.

For the oldstable distribution (stretch), this problem has been fixed
in version 1.3.2-2+deb9u2.

For the stable distribution (buster), this problem has been fixed in
version 1.3.2-6+deb10u1.

We recommend that you upgrade your opendmarc packages.

For the detailed security status of opendmarc please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/opendmarc

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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gqNK
-----END PGP SIGNATURE-----

Top Authors In Last 30 Days

Red Hat 210 files
Ubuntu 64 files
Debian 27 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
Ersin Erenler 4 files
E1.Coders 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

Debian Security Advisory 4526-1

Debian Security Advisory 4526-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Debian Security Advisory 4526-1

Share This

Debian Security Advisory 4526-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems