rpm package
suse/python-aiosmtpd&distro=SUSE Package Hub 15 SP5
pkg:rpm/suse/python-aiosmtpd&distro=SUSE%20Package%20Hub%2015%20SP5
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-34083 | Med | 5.4 | < 1.2.1-bp155.3.3.1 | 1.2.1-bp155.3.3.1 | May 18, 2024 | aiosmptd is a reimplementation of the Python stdlib smtpd.py based on asyncio. Prior to version 1.4.6, servers based on aiosmtpd accept extra unencrypted commands after STARTTLS, treating them as if they came from inside the encrypted connection. This could be exploited by a man | |
| CVE-2024-27305 | — | < 1.2.1-bp155.3.3.1 | 1.2.1-bp155.3.3.1 | Mar 12, 2024 | aiosmtpd is a reimplementation of the Python stdlib smtpd.py based on asyncio. aiosmtpd is vulnerable to inbound SMTP smuggling. SMTP smuggling is a novel vulnerability based on not so novel interpretation differences of the SMTP protocol. By exploiting SMTP smuggling, an attacke |
- affected < 1.2.1-bp155.3.3.1fixed 1.2.1-bp155.3.3.1
aiosmptd is a reimplementation of the Python stdlib smtpd.py based on asyncio. Prior to version 1.4.6, servers based on aiosmtpd accept extra unencrypted commands after STARTTLS, treating them as if they came from inside the encrypted connection. This could be exploited by a man
- CVE-2024-27305Mar 12, 2024affected < 1.2.1-bp155.3.3.1fixed 1.2.1-bp155.3.3.1
aiosmtpd is a reimplementation of the Python stdlib smtpd.py based on asyncio. aiosmtpd is vulnerable to inbound SMTP smuggling. SMTP smuggling is a novel vulnerability based on not so novel interpretation differences of the SMTP protocol. By exploiting SMTP smuggling, an attacke