OESA-2026-2288
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2026-2288
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2026-2288.json
- JSON Data
- https://api.osv.dev/v1/vulns/OESA-2026-2288
- Upstream
- Published
- 2026-05-15T13:59:54Z
- Modified
- 2026-05-15T14:15:07.493072Z
- Summary
- postfix security update
- Details
-
Postfix is a Mail Transport Agent (MTA).
Security Fix(es):
Postfix before 3.8.16, 3.9 before 3.9.10, and 3.10 before 3.10.9 sometimes allows a buffer over-read and process crash via an enhanced status code that lacks text after the third number.(CVE-2026-43964)
- Database specific
{ "severity": "Low" }- References
Affected packages
openEuler:24.03-LTS-SP1 / postfix
Package
- Name
- postfix
- Purl
- pkg:rpm/openEuler/postfix&distro=openEuler-24.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.8.4-2.oe2403sp1
Ecosystem specific
{
"src": [
"postfix-3.8.4-2.oe2403sp1.src.rpm"
],
"aarch64": [
"postfix-3.8.4-2.oe2403sp1.aarch64.rpm",
"postfix-debuginfo-3.8.4-2.oe2403sp1.aarch64.rpm",
"postfix-debugsource-3.8.4-2.oe2403sp1.aarch64.rpm",
"postfix-perl-scripts-3.8.4-2.oe2403sp1.aarch64.rpm",
"postfix-pgsql-3.8.4-2.oe2403sp1.aarch64.rpm"
],
"x86_64": [
"postfix-3.8.4-2.oe2403sp1.x86_64.rpm",
"postfix-debuginfo-3.8.4-2.oe2403sp1.x86_64.rpm",
"postfix-debugsource-3.8.4-2.oe2403sp1.x86_64.rpm",
"postfix-perl-scripts-3.8.4-2.oe2403sp1.x86_64.rpm",
"postfix-pgsql-3.8.4-2.oe2403sp1.x86_64.rpm"
],
"noarch": [
"postfix-help-3.8.4-2.oe2403sp1.noarch.rpm",
"postfix-sysvinit-3.8.4-2.oe2403sp1.noarch.rpm"
]
}