Do you want an email whenever new security vulnerabilities are reported in Sendmail?

By the Year

In 2023 there have been 0 vulnerabilities in Sendmail . Last year Sendmail had 1 security vulnerability published. Right now, Sendmail is on track to have less security vulnerabilities in 2023 than it did last year.

Year Vulnerabilities Average Score
2023 0 0.00
2022 1 7.40
2021 0 0.00
2020 0 0.00
2019 0 0.00
2018 0 0.00

It may take a day or so for new Sendmail vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Sendmail Security Vulnerabilities

ALPACA is an application layer protocol content confusion attack

CVE-2021-3618 7.4 - High - March 23, 2022

ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

Improper Certificate Validation

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Debian Linux or by Sendmail? Click the Watch button to subscribe.