VYPR

rpm package

opensuse/python-aiosmtpd&distro=openSUSE Leap 15.5

pkg:rpm/opensuse/python-aiosmtpd&distro=openSUSE%20Leap%2015.5

Vulnerabilities (2)

  • CVE-2024-34083MedMay 18, 2024
    affected < 1.2.1-bp155.3.3.1fixed 1.2.1-bp155.3.3.1

    aiosmptd is a reimplementation of the Python stdlib smtpd.py based on asyncio. Prior to version 1.4.6, servers based on aiosmtpd accept extra unencrypted commands after STARTTLS, treating them as if they came from inside the encrypted connection. This could be exploited by a man

  • CVE-2024-27305Mar 12, 2024
    affected < 1.2.1-bp155.3.3.1fixed 1.2.1-bp155.3.3.1

    aiosmtpd is a reimplementation of the Python stdlib smtpd.py based on asyncio. aiosmtpd is vulnerable to inbound SMTP smuggling. SMTP smuggling is a novel vulnerability based on not so novel interpretation differences of the SMTP protocol. By exploiting SMTP smuggling, an attacke