VYPR

Sympa

by Debian

CVEs (2)

  • CVE-2020-26932Oct 10, 2020
    risk 0.00cvss epss 0.01

    debian/sympa.postinst for the Debian Sympa package before 6.2.40~dfsg-7 uses mode 4755 for sympa_newaliases-wrapper, whereas the intended permissions are mode 4750 (for access by the sympa group)

  • CVE-2005-0073May 2, 2005
    risk 0.00cvss epss 0.00

    Buffer overflow in queue.c in a support script for sympa 3.3.3, when running setuid, allows local users to execute arbitrary code.