Reportedly, a new release of the DMARC has been released with the patch applied. This DMARC release has been confirmed to be working. An upgraded version of the DMARC is recommended to be used. As mentioned earlier, the patch is available here. It is recommended to update the DMARC to the latest release to avoid any issues.
Troubleshooting Steps for DMARC
1) Check your DMARC policy and make sure the domian is using the specified DNS record.
2) Check for a domain in the DKIM signing service that is listed as "no-reply@" or a domain that has been recently added to the DKIM signing service.
3) If you are still experiencing issues with your DMARC, please contact our team at support@mailchimp.com. We can help troubleshoot any issues with DMARC and/or provide further assistance.
Knowledgebase Updates
As always, we’re here to help. If you're unable to update your DMARC, please contact our customer service team for assistance.
How to Disable Shadow MX Records
The DMARC patch is available here. It is recommended to update the DMARC to the latest release.
To disable shadow MX records, you can use this link: https://tools.ietf.org/html/rfc4408
This will disable all additional MX records that are configured in your DMARC policy and help prevent issues with email servers when they might be sending too many emails or not know how to handle them.
Timeline
Published on: 10/20/2022 20:15:00 UTC
Last modified on: 11/14/2022 15:15:00 UTC
References
- https://vuldb.com/?id.211919
- https://git.exim.org/exim.git/commit/12fb3842f81bcbd4a4519d5728f2d7e0e3ca1445
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/667V3ADXQ2MHUJMSXA3VZZEWLVSCIBEU/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XV2K2AWF62FSJ64B5CUZPFT4COK7P5PM/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EIH4W5R7SHTUEQFWWKB4TUO5YFZX64KV/
- https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-3620