diff options
author | Dan Mahoney <freebsd@gushi.org> | 2021-12-29 04:41:37 +0000 |
---|---|---|
committer | Philip Paeps <philip@FreeBSD.org> | 2021-12-30 03:24:47 +0000 |
commit | 06c4c6be864e07683365d9b1ecdb5de9e1f98ef2 (patch) | |
tree | 1ed79e3fed9ad74810f47eed9831cec6bbda5458 /security/vuxml/vuln-2021.xml | |
parent | af45137ac99e6fa40aaba0cfdca4f3c9ced89eb5 (diff) | |
download | ports-06c4c6be864e07683365d9b1ecdb5de9e1f98ef2.tar.gz ports-06c4c6be864e07683365d9b1ecdb5de9e1f98ef2.zip |
security/vuxml: OpenDMARC 1.4.1 vulnerability
PR: 260594
Diffstat (limited to 'security/vuxml/vuln-2021.xml')
-rw-r--r-- | security/vuxml/vuln-2021.xml | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/security/vuxml/vuln-2021.xml b/security/vuxml/vuln-2021.xml index c9d0922979a5..78344b256bce 100644 --- a/security/vuxml/vuln-2021.xml +++ b/security/vuxml/vuln-2021.xml @@ -1,3 +1,28 @@ + <vuln vid="ede832bf-6576-11ec-a636-000c29061ce6"> + <topic>OpenDMARC - Remote denial of service</topic> + <affects> + <package> + <name>opendmarc</name> + <range><ge>1.4.1</ge><lt>1.4.2</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>OpenDMARC 1.4.1 and 1.4.1.1 will dereference a NULL pointer when + encountering a multi-value From: header field. A remote attacker can + send a specially crafted message resulting in a denial of service.</p> + </body> + </description> + <references> + <cvename>CVE-2021-34555</cvename> + <url>https://github.com/trusteddomainproject/OpenDMARC/issues/179</url> + </references> + <dates> + <discovery>2021-06-09</discovery> + <entry>2021-12-30</entry> + </dates> + </vuln> + <vuln vid="937aa1d6-685e-11ec-a636-000c29061ce6"> <topic>OpenDMARC - Multiple vulnerabilities</topic> <affects> |