Amazon Linux 2023 Security Advisory: ALAS-2023-221
Advisory Release Date: 2023-06-21 19:10 Pacific
Advisory Updated Date: 2023-06-27 20:58 Pacific
Severity:
Medium
Issue Overview:
ascii_load_sockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable through 7.0.0-portable, can abort upon a connection from a local, scoped IPv6 address. (CVE-2023-29323)
Affected Packages:
opensmtpd
Issue Correction:
Run dnf update opensmtpd --releasever 2023.1.20230628 to update your system.
New Packages:
aarch64:
opensmtpd-debugsource-6.8.0p2-11.amzn2023.0.1.aarch64
opensmtpd-debuginfo-6.8.0p2-11.amzn2023.0.1.aarch64
opensmtpd-6.8.0p2-11.amzn2023.0.1.aarch64
src:
opensmtpd-6.8.0p2-11.amzn2023.0.1.src
x86_64:
opensmtpd-debuginfo-6.8.0p2-11.amzn2023.0.1.x86_64
opensmtpd-debugsource-6.8.0p2-11.amzn2023.0.1.x86_64
opensmtpd-6.8.0p2-11.amzn2023.0.1.x86_64