Information on source package libspf2

Available versions

ReleaseVersion
jessie1.2.10-5+deb8u2
stretch1.2.10-7+deb9u2
buster1.2.10-7.1~deb10u1
bullseye1.2.10-7.1~deb11u1
bookworm1.2.10-7.2
trixie1.2.10-8.2
sid1.2.10-8.2

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2023-42118vulnerablevulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerablevulnerableExim libspf2 Integer Underflow Remote Code Execution Vulnerability. Th ...

Resolved issues

BugDescription
CVE-2021-33913libspf2 before 1.2.11 has a heap-based buffer overflow that might allo ...
CVE-2021-33912libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that ...
CVE-2021-20314Stack buffer overflow in libspf2 versions below 1.2.11 when processing ...
CVE-2008-2469Heap-based buffer overflow in the SPF_dns_resolv_lookup function in Sp ...

Security announcements

DSA / DLADescription
DLA-2890-1libspf2 - security update
ELA-544-1libspf2 - security update
DSA-4955-1libspf2 - security update
DLA-2739-1libspf2 - security update
ELA-477-1libspf2 - security update
DSA-1659-1libspf2 - potential remote code execution

Search for package or bug name: Reporting problems