Описание
OpenDMARC 1.4.1 and 1.4.1.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a multi-value From header field.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| opendmarc | fixed | 1.4.0~beta1+dfsg-6 | package | |
| opendmarc | not-affected | buster | package | |
| opendmarc | not-affected | stretch | package |
Примечания
https://github.com/trusteddomainproject/OpenDMARC/issues/179
https://github.com/trusteddomainproject/OpenDMARC/pull/178
EPSS
Связанные уязвимости
OpenDMARC 1.4.1 and 1.4.1.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a multi-value From header field.
OpenDMARC 1.4.1 and 1.4.1.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a multi-value From header field.
OpenDMARC 1.4.1 and 1.4.1.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a multi-value From header field.
Уязвимость реализации аутентификации OpenDMARC, связанная с ошибками разыменования указателя, позволяющая нарушителю вызвать отказ в обслуживании
EPSS