CVE-2019-16791

Summary

In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy.

Affected Software

VendorProductVersion RangeStatus
Snawootpostfix-mta-sts-resolver< 0.5.1affected

Weaknesses

  • CWE-757: CWE-757: Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

ADP Enrichment

CVE Program Container

Additional References

References