ALSA-2024:9243

See a problem?
Please try reporting it to the source first.

Source

https://errata.almalinux.org/9/ALSA-2024-9243.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2024:9243.json

JSON Data

https://api.osv.dev/v1/vulns/ALSA-2024:9243

Related

CVE-2023-51764

Published

2024-11-12T00:00:00Z

Modified

2024-11-18T11:52:52Z

Summary

Moderate: postfix security update

Details

The postfix packages provide a Mail Transport Agent (MTA), which supports protocols like LDAP, SMTP AUTH (SASL), and TLS.

Security Fix(es):

postfix: SMTP smuggling vulnerability (CVE-2023-51764)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References

Affected packages

AlmaLinux:9 / postfix

Package

Name: postfix

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:3.5.25-1.el9

AlmaLinux:9 / postfix-cdb

Package

Name: postfix-cdb

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:3.5.25-1.el9

AlmaLinux:9 / postfix-ldap

Package

Name: postfix-ldap

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:3.5.25-1.el9

AlmaLinux:9 / postfix-lmdb

Package

Name: postfix-lmdb

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:3.5.25-1.el9

AlmaLinux:9 / postfix-mysql

Package

Name: postfix-mysql

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:3.5.25-1.el9

AlmaLinux:9 / postfix-pcre

Package

Name: postfix-pcre

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:3.5.25-1.el9

AlmaLinux:9 / postfix-perl-scripts

Package

Name: postfix-perl-scripts

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:3.5.25-1.el9

AlmaLinux:9 / postfix-pgsql

Package

Name: postfix-pgsql

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:3.5.25-1.el9

AlmaLinux:9 / postfix-sqlite

Package

Name: postfix-sqlite

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:3.5.25-1.el9