Summary: | <mail-filter/opendmarc-1.3.2-r3: Signature-bypass vulnerability with multiple 'From' addresses (CVE-2019-16378) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Benny Pedersen <me> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | grobian |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/trusteddomainproject/OpenDMARC/pull/48 | ||
Whiteboard: | B4 [noglsa cve] | ||
Package list: |
mail-filter/opendmarc-1.3.2-r3
|
Runtime testing required: | --- |
Description
Benny Pedersen
2019-09-19 14:08:56 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4d5480baf0d90e1a33e9b8dde0c9ba7051f989ef commit 4d5480baf0d90e1a33e9b8dde0c9ba7051f989ef Author: Fabian Groffen <grobian@gentoo.org> AuthorDate: 2019-09-19 18:46:01 +0000 Commit: Fabian Groffen <grobian@gentoo.org> CommitDate: 2019-09-19 18:46:17 +0000 mail-filter/opendmarc: revbump with fix for CVE-2019-16378 Bug: https://bugs.gentoo.org/694968 Package-Manager: Portage-2.3.69, Repoman-2.3.16 Signed-off-by: Fabian Groffen <grobian@gentoo.org> .../files/opendmarc-1.3.2-multiple-From.patch | 35 +++++++++++ mail-filter/opendmarc/opendmarc-1.3.2-r3.ebuild | 72 ++++++++++++++++++++++ 2 files changed, 107 insertions(+) @ maintainer(s): Can we already stabilize >=mail-filter/opendmarc-1.3.2-r3? it is working fine sofar in my testing setup, I think it should be good to go sparc stable ppc stable ppc64 stable x86 stable amd64 stable hppa stable arm stable ia64 stable Are we ok to cleanup? Resetting sanity check; keywords are not fully specified and arches are not CC-ed. @maintainer(s), please cleanup The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=eae0fa1836faa9f2224b7f926f575d35c1d9ecda commit eae0fa1836faa9f2224b7f926f575d35c1d9ecda Author: Fabian Groffen <grobian@gentoo.org> AuthorDate: 2020-04-28 05:57:02 +0000 Commit: Fabian Groffen <grobian@gentoo.org> CommitDate: 2020-04-28 05:57:02 +0000 mail-filter/opendmarc: cleanup, bug #694968 Bug: https://bugs.gentoo.org/694968 Package-Manager: Portage-2.3.89, Repoman-2.3.20 Signed-off-by: Fabian Groffen <grobian@gentoo.org> mail-filter/opendmarc/Manifest | 1 - mail-filter/opendmarc/opendmarc-1.1.3.ebuild | 29 ----------- mail-filter/opendmarc/opendmarc-1.3.2-r1.ebuild | 63 ----------------------- mail-filter/opendmarc/opendmarc-1.3.2-r2.ebuild | 66 ------------------------- 4 files changed, 159 deletions(-) |