Project

General

Profile

Bug #6833

postfixadmin: allows to delete protected aliases (CVE-2017-5930)

Added by Alicha CH about 2 years ago. Updated about 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
-
Start date:
02/09/2017
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Affected versions:
Security IDs:

Description

Affected versions:

PostfixAdmin 3.0 and 3.0.1

PostfixAdmin 2.91, 2.92 and 2.93 (which actually are 3.0 beta releases)

Older PostfixAdmin releases (2.3.x and older) are not affected.

PostfixAdmin 3.0.2 will fix this issue

References:

https://github.com/postfixadmin/postfixadmin/pull/23
http://openwall.com/lists/oss-security/2017/02/07/6


Subtasks

Bug #6834: [3.6] postfixadmin: allows to delete protected aliases (CVE-2017-5930)ClosedNatanael Copa

Bug #6835: [3.5] postfixadmin: allows to delete protected aliases (CVE-2017-5930)ClosedNatanael Copa

Bug #6836: [3.4] postfixadmin: allows to delete protected aliases (CVE-2017-5930)ClosedNatanael Copa

Bug #6837: [3.3] postfixadmin: allows to delete protected aliases (CVE-2017-5930)ClosedNatanael Copa

Bug #6838: [3.2] postfixadmin: allows to delete protected aliases (CVE-2017-5930)ClosedNatanael Copa

History

#1 Updated by Alicha CH about 2 years ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from New to Closed

Also available in: Atom PDF