VYPR

rpm package

suse/python-aiosmtpd&distro=SUSE Package Hub 15 SP5

pkg:rpm/suse/python-aiosmtpd&distro=SUSE%20Package%20Hub%2015%20SP5

Vulnerabilities (2)

  • CVE-2024-34083MedMay 18, 2024
    affected < 1.2.1-bp155.3.3.1fixed 1.2.1-bp155.3.3.1

    aiosmptd is a reimplementation of the Python stdlib smtpd.py based on asyncio. Prior to version 1.4.6, servers based on aiosmtpd accept extra unencrypted commands after STARTTLS, treating them as if they came from inside the encrypted connection. This could be exploited by a man

  • CVE-2024-27305Mar 12, 2024
    affected < 1.2.1-bp155.3.3.1fixed 1.2.1-bp155.3.3.1

    aiosmtpd is a reimplementation of the Python stdlib smtpd.py based on asyncio. aiosmtpd is vulnerable to inbound SMTP smuggling. SMTP smuggling is a novel vulnerability based on not so novel interpretation differences of the SMTP protocol. By exploiting SMTP smuggling, an attacke