oss-security - Re: Re: New SMTP smuggling attack

Follow @Openwall on Twitter for new release announcements and other news

[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]

Date: Sat, 30 Dec 2023 17:11:22 +0100
From: Marcus Meissner <meissner@...e.de>
To: oss-security@...ts.openwall.com
Cc: Claus Assmann <ml+oss@...tp.org>
Subject: Re: Re: New SMTP smuggling attack

On Fri, Dec 29, 2023 at 12:50:55PM -0800, Alan Coopersmith wrote:
> On 12/26/23 11:15, Claus Assmann wrote:
> > On Sun, Dec 24, 2023, Marcus Meissner wrote:
> > 
> > > - CVE-2023-51765 sendmail
> > 
> > Can you update the text for this (or point me to the proper way/persons
> > to do this)?
> 
> https://www.cve.org/CVERecord?id=CVE-2023-51765 shows:
>   Assigner: MITRE Corporation
> 
> so you can submit updates/corrections via the web form at:
>   https://cveform.mitre.org/

Yes please use this form, or if you do not want one of us can do it.

I did not request the sendmail and exim CVEs, also the postfix CVE seems
not my proposed description, so I guess someone else requested them.

Ciao, Marcus

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.