Version 5.4.5 (2016-12-29)
Prior to 5.4.5, the mail transport (Swift_Transport_MailTransport) was vulnerable to passing arbitrary shell arguments if the "From", "ReturnPath" or "Sender" header came from a non-trusted source, potentially allowing Remote Code Execution
sudo dnf upgrade --refresh --advisory=FEDORA-2016-b65e546846
Please login to add feedback.
This update has been submitted for testing by remi.
This update has been pushed to testing.
remi edited this update.
This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes
This update has been submitted for stable by remi.
This update has been pushed to stable.