Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Fri, 2 Oct 2015 15:25:06 +0200
From: Arrigo Triulzi <>
Cc: misc <>
Subject: Re: CVE requests: Critical vulnerabilities in OpenSMTPD

On Oct 2, 2015, at 15:22, Jason A. Donenfeld <> wrote:
> See this excerpt from the release notes below. Quite a few bugs. Looks
> like at least one of them might invalidate the claim,
> "Only two remote holes in the default install, in a heck of a long
> time!”.

OpenSMTPD only listens on localhost in the default install.


Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.