oss-sec mailing list archives

Re: Re: New SMTP smuggling attack

From: Marcus Meissner <meissner () suse de>
Date: Sat, 30 Dec 2023 17:11:22 +0100

On Fri, Dec 29, 2023 at 12:50:55PM -0800, Alan Coopersmith wrote:

On 12/26/23 11:15, Claus Assmann wrote:

On Sun, Dec 24, 2023, Marcus Meissner wrote:

- CVE-2023-51765 sendmail


Can you update the text for this (or point me to the proper way/persons
to do this)?


https://www.cve.org/CVERecord?id=CVE-2023-51765 shows:
  Assigner: MITRE Corporation

so you can submit updates/corrections via the web form at:
  https://cveform.mitre.org/


Yes please use this form, or if you do not want one of us can do it.

I did not request the sendmail and exim CVEs, also the postfix CVE seems
not my proposed description, so I guess someone else requested them.

Ciao, Marcus

Current thread:

Re: Re: New SMTP smuggling attack, (continued)
- - - Re: Re: New SMTP smuggling attack Alexander E. Patrakov (Dec 22)
    - Re: Re: New SMTP smuggling attack Erik Auerswald (Dec 22)
    - Re: Re: New SMTP smuggling attack Stuart D Gathman (Dec 22)
    - Re: Re: New SMTP smuggling attack Harry Sintonen (Dec 22)
    - Re: Re: New SMTP smuggling attack Bjoern Franke (Dec 22)
    - Re: Re: New SMTP smuggling attack Valtteri Vuorikoski (Dec 23)
    - Re: Re: New SMTP smuggling attack Marcus Meissner (Dec 24)
    - Re: Re: New SMTP smuggling attack kai (Dec 25)
    - Re: New SMTP smuggling attack Claus Assmann (Dec 26)
    - Re: Re: New SMTP smuggling attack Alan Coopersmith (Dec 29)
    - Re: Re: New SMTP smuggling attack Marcus Meissner (Dec 30)
    - Re: Re: New SMTP smuggling attack Claus Assmann (Dec 30)
- Re: New SMTP smuggling attack Hanno Böck (Dec 22)