oss-sec mailing list archives
Re: OpenDMARC buffer overflows
From: Alyssa Ross <hi () alyssa is>
Date: Tue, 17 Sep 2019 18:20:21 +0000
Hanno Böck <hanno () hboeck de> writes:
In light of the recent OpenDMARC issue I had a look at their Github PR tracker. This one https://github.com/trusteddomainproject/OpenDMARC/pull/45 caught my attention.
So a signature bypass, a buffer overflow, and no activity in years despite vulnerabilities having been reported months ago? Certainly doesn't look like software that people should be relying on for security...
Attachment:
signature.asc
Description:
Current thread:
- OpenDMARC buffer overflows Hanno Böck (Sep 17)
- Re: OpenDMARC buffer overflows Alyssa Ross (Sep 17)
- Re: OpenDMARC buffer overflows Thomas Ward (Sep 17)
- Re: OpenDMARC buffer overflows Alyssa Ross (Sep 17)