Procmail Vulnerabilities check
Roger Marquis
marquis at roble.com
Sat Nov 25 16:59:32 UTC 2017
Jos Chrispijn wrote:
> Dear sunpoet,
> Noticed this week following issue on procmail.
> ...
> procmail -- Heap-based buffer overflow
> https://vuxml.FreeBSD.org/freebsd/288f7cee-ced6-11e7-8ae9-0050569f0b83.html
Whether mail/procmail is patched or deprecated standard practice has
been to upgrade to mailmaildrop for some years now. Procmail source is
difficult to read at best, has been unmaintained for a long time and
mailmaildrop is a better tool for this job in almost every way (except
perhaps for macros like TO).
Roger
More information about the freebsd-ports
mailing list