diff options
author | Sylvain Beucler <beuc@beuc.net> | 2024-03-11 11:57:35 +0100 |
---|---|---|
committer | Sylvain Beucler <beuc@beuc.net> | 2024-03-11 12:07:53 +0100 |
commit | 9a2a182dc53f0632ecd32108c91c071bdad76289 (patch) | |
tree | 9cfdbcd5fa761e781de109b375618be394562810 /data/DLA | |
parent | e04c1394c5929c19ba6d932b026618f67cd7f212 (diff) |
Revert "Removed sendmail from dla-needed since there is no CVE marked as need for a fix for buster."
This reverts commit f95d3ce82bb4c126f1895a4fc26d26e068cd8ccb.
Rationale:
- SMTP Smuggling (CVE-2023-51765) had significant impact
- SMTP Smuggling was fixed in e.g. Postfix and Exim
- Sendmail is sponsored for LTS
- Preliminary LTS work was done
- CVE-2023-51765 is still not triaged for sendmail/buster
Consequently it's hard to explain why we would not attempt to fix it.
In this case, I believe LTS should make an effort to fix sendmail for all dists,
rather than follow secteam's initial triage.
Diffstat (limited to 'data/DLA')
0 files changed, 0 insertions, 0 deletions