On Tue, Nov 01, 2022 at 06:25:49PM +0100, Jaroslaw Rafa via mailop wrote: > Dnia 1.11.2022 o godz. 17:46:26 Tobias Fiebig via mailop pisze: > > So mail might be one of the few cases where the OpenSSL bug is relevant > > (even though not many run their MTAs on Ubuntu 22.04 or similar, I guess; > > Docker world might be different, no clue what mailcow is doing). > > Could you provide some link to vulnerability description? I missed this > somehow...
https://www.openssl.org/blog/blog/2022/11/01/email-address-overflows/ and also https://news.ycombinator.com/item?id=33422837 https://www.malwaretech.com/2022/11/everything-you-need-to-know-about-the-openssl-3-0-7-patch.html Christof -- https://cmeerw.org sip:cmeerw at cmeerw.org mailto:cmeerw at cmeerw.org xmpp:cmeerw at cmeerw.org _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
