USN-4567-1: OpenDMARC vulnerability

05 October 2020

OpenDMARC could allow signature bypass under certain conditions.

Releases

Packages

  • opendmarc - Open Source implementation of the DMARC specification

Details

It was discovered that OpenDMARC is prone to a signature-bypass vulnerability
with multiple "From:" addresses. An attacker could use it to bypass spam and
abuse filters.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 18.04

In general, a standard system update will make all the necessary changes.

References