VulnerableCode Package Details - pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3

Search for packages

Package details: pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3

Essentials
History (2)

purl	pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3

Next non-vulnerable version	8.17.1.9-2+deb12u2
Latest non-vulnerable version	8.17.1.9-2+deb12u2
Risk	3.4

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-3d3j-83ap-jua7 Aliases: CVE-2021-3618	ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.	8.17.1.9-2+deb12u2 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-dnru-ftg8-vkc4	sendmail: SMTP smuggling vulnerability	CVE-2023-51765

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T13:22:52.036032+00:00	Debian Importer	Affected by	VCID-3d3j-83ap-jua7	https://security-tracker.debian.org/tracker/data/json	37.0.0
2025-08-01T12:57:14.278944+00:00	Debian Oval Importer	Fixing	VCID-dnru-ftg8-vkc4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0