aboutsummaryrefslogtreecommitdiff
path: root/security/vuxml/vuln-2021.xml
diff options
context:
space:
mode:
authorDan Mahoney <freebsd@gushi.org>2021-12-29 04:41:37 +0000
committerPhilip Paeps <philip@FreeBSD.org>2021-12-30 03:24:47 +0000
commit06c4c6be864e07683365d9b1ecdb5de9e1f98ef2 (patch)
tree1ed79e3fed9ad74810f47eed9831cec6bbda5458 /security/vuxml/vuln-2021.xml
parentaf45137ac99e6fa40aaba0cfdca4f3c9ced89eb5 (diff)
downloadports-06c4c6be864e07683365d9b1ecdb5de9e1f98ef2.tar.gz
ports-06c4c6be864e07683365d9b1ecdb5de9e1f98ef2.zip
security/vuxml: OpenDMARC 1.4.1 vulnerability
PR: 260594
Diffstat (limited to 'security/vuxml/vuln-2021.xml')
-rw-r--r--security/vuxml/vuln-2021.xml25
1 files changed, 25 insertions, 0 deletions
diff --git a/security/vuxml/vuln-2021.xml b/security/vuxml/vuln-2021.xml
index c9d0922979a5..78344b256bce 100644
--- a/security/vuxml/vuln-2021.xml
+++ b/security/vuxml/vuln-2021.xml
@@ -1,3 +1,28 @@
+ <vuln vid="ede832bf-6576-11ec-a636-000c29061ce6">
+ <topic>OpenDMARC - Remote denial of service</topic>
+ <affects>
+ <package>
+ <name>opendmarc</name>
+ <range><ge>1.4.1</ge><lt>1.4.2</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>OpenDMARC 1.4.1 and 1.4.1.1 will dereference a NULL pointer when
+ encountering a multi-value From: header field. A remote attacker can
+ send a specially crafted message resulting in a denial of service.</p>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2021-34555</cvename>
+ <url>https://github.com/trusteddomainproject/OpenDMARC/issues/179</url>
+ </references>
+ <dates>
+ <discovery>2021-06-09</discovery>
+ <entry>2021-12-30</entry>
+ </dates>
+ </vuln>
+
<vuln vid="937aa1d6-685e-11ec-a636-000c29061ce6">
<topic>OpenDMARC - Multiple vulnerabilities</topic>
<affects>
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-24 12:55:44 +0000