OpenSMTPD security updates for two vulnerabilities
Qualys security researchers have discovered two vulnerabilities in OpenBSD’s mail server OpenSMTPD. OpenBSD has provided patches for both vulnerabilities.
OpenBSD
Critical OpenSMTPD Remote Code Execution Vulnerability
Security researchers have discovered a new vulnerability in OpenBSD’s OpenSMTPD mail server. An attacker could exploit the remote code execution vulnerability CVE-2020-7247 and execute arbitrary shell commands with elevated privileges.
Backdoor discovered in Webmin, a popular Unix utility
A security researcher discovered a backdoor in the popular web-based utility used to remotely manage Unix-based servers, to include Linux, FreeBSD and OpenBSD systems.