[Semibug] Fwd: OpenSMTPD Releases Version 6.6.4p1 to Address a Critical Vulnerability

Jeffrey David Marraccini jeff at nucleus.mi.org
Tue Feb 25 19:49:16 EST 2020


FYI, please update!


Begin forwarded message:

> From: US-CERT <US-CERT at ncas.us-cert.gov>
> Date: February 25, 2020 at 19:47:39 EST
> To: marraccini at acm.org
> Subject: OpenSMTPD Releases Version 6.6.4p1 to Address a Critical Vulnerability
> Reply-To: US-CERT at ncas.us-cert.gov
> 
> 
>  
> 
> National Cyber Awareness System:
> 
>  
> 
> OpenSMTPD Releases Version 6.6.4p1 to Address a Critical Vulnerability
> 02/25/2020 05:04 PM EST
> 
> Original release date: February 25, 2020
> OpenSMTPD has released version 6.6.4p1 to address a critical vulnerability. A remote attacker could exploit this vulnerability to take control of an affected server. OpenSMTPD is an open-source server-side implementation of the Simple Mail Transfer Protocol (SMTP) that is part of the OpenBSD Project.
> 
> The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to apply the necessary update. For OpenBSD implementations, binary patches are available through syspatch; see OpenSMTPD’s Message 04888 for further instruction. For other systems, the update is available at OpenSMTPD’s GitHub release page.
> 
> This product is provided subject to this Notification and this Privacy & Use policy.
> 
> A copy of this publication is available at www.us-cert.gov. If you need help or have questions, please send an email to info at us-cert.gov. Do not reply to this message since this email was sent from a notification-only address that is not monitored. To ensure you receive future US-CERT products, please add US-CERT at ncas.us-cert.gov to your address book.
> OTHER RESOURCES:
> Contact Us | Security Publications | Alerts and Tips | Related Resources
> STAY CONNECTED:
> 
> SUBSCRIBER SERVICES:
> Manage Preferences  |  Unsubscribe  |  Help
> 
> This email was sent to marraccini at acm.org using GovDelivery Communications Cloud on behalf of: United States Computer Emergency Readiness Team (US-CERT) · 245 Murray Lane SW Bldg 410 · Washington, DC 20598 · (888) 282-0870	
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.nycbug.org/pipermail/semibug/attachments/20200225/11e8aebf/attachment.htm>


More information about the Semibug mailing list