opendmarc 1.3.2-7ubuntu0.1 source package in Ubuntu

Changelog

opendmarc (1.3.2-7ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: false authentication results
    - debian/patches/CVE-2020-12272.patch: check syntaxes of domain names
      passed to opendmarc_policy_store_spf() and
      opendmarc_policy_store_dkim().
    - CVE-2020-12272
  * SECURITY UPDATE: heap overflow
    - debian/patches/CVE-2020-12460.patch: ensure NULL-termination of the
      buffer is passed to opendmarc_xml() from opendmarc_xml_parse().
    - CVE-2020-12460

 -- Allen Huang <email address hidden>  Fri, 08 Sep 2023 10:20:49 +0100

Upload details

Uploaded by:
Allen Huang
Uploaded to:
Focal
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
mail
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Focal updates universe misc
Focal security universe misc

Downloads

File Size SHA-256 Checksum
opendmarc_1.3.2.orig.tar.gz 579.5 KiB 213c4b01a9ff5dcdf331f7bd1dd6a382077abbf8ee9111852f2101ec917c2ffb
opendmarc_1.3.2-7ubuntu0.1.debian.tar.xz 27.4 KiB 6ca3b28fe71645e28bfd5e4b799ac090e04b60b20b9f2ac0ef84db0afc3b99fd
opendmarc_1.3.2-7ubuntu0.1.dsc 2.2 KiB d0adc8b059aee9ee4c197093758382f06c7cb4f45a080d54aab0c4d55c4d59aa

View changes file

Binary packages built by this source

libopendmarc-dev: Headers and development libraries for the OpenDMARC library

 Domain-based Message Authentication, Reporting and Conformance (DMARC),
 builds on the successes of technologies such as DomainKeys Identified Mail
 (DKIM) and the Sender Policy Framework (SPF) to create an infrastructure that
 enforces policy on domain names that are visible to end users, and creates a
 feedback framework for identifying and tracking fraudulent use of domain
 names in email.
 .
 This package provides the required header files and development libraries for
 developing against the OpenDMARC library.

libopendmarc2: Library for DMARC validation and reporting

 Domain-based Message Authentication, Reporting and Conformance (DMARC),
 builds on the successes of technologies such as DomainKeys Identified Mail
 (DKIM) and the Sender Policy Framework (SPF) to create an infrastructure that
 enforces policy on domain names that are visible to end users, and creates a
 feedback framework for identifying and tracking fraudulent use of domain
 names in email.
 .
 This package provides library for implementing mail validation and reporting
 for the experimental DMARC standard.

libopendmarc2-dbgsym: debug symbols for libopendmarc2
opendmarc: Milter implementation of DMARC

 Domain-based Message Authentication, Reporting and Conformance (DMARC),
 builds on the successes of technologies such as DomainKeys Identified Mail
 (DKIM) and the Sender Policy Framework (SPF) to create an infrastructure that
 enforces policy on domain names that are visible to end users, and creates a
 feedback framework for identifying and tracking fraudulent use of domain
 names in email. It uses OpenDBX as an interface layer to various SQL back
 ends.
 .
 It provides the following new capabilities:
 .
 A binding between the domain name seen in the From: field of a message and
 one or both of the domain names verified by DKIM and SPF;
 .
 The capability to request that receivers enforce strict message
 authentication policy published by the author; and Comprehensive reporting,
 both forensic and aggregate, regarding suspect messages.
 .
 This package contains the OpenDMARC mail filter (Milter) for plugging into
 Milter-aware MTAs. It implements support for both message reject and DMARC
 failure reporting.
 .
 It also provides various example scripts which can be used for enhancing
 opendmarc.

opendmarc-dbgsym: debug symbols for opendmarc