Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2021-20314 - log back

CVE-2021-20314 edited at 11 Aug 2021 21:17:43

Severity

-	Unknown
+	Medium

Remote

-	Unknown
+	Remote

Type

-	Unknown
+	Arbitrary code execution

Description

+	A stack buffer overflow in libspf2 versions below 1.2.11 when processing certain SPF macros can lead to denial of service and potentially code execution via malicious crafted SPF explanation messages.

References

+	https://www.openwall.com/lists/oss-security/2021/08/11/6
+	https://github.com/shevek/libspf2/commit/c37b7c13c30e225183899364b9f2efdfa85552ef

Notes

CVE-2021-20314 created at 11 Aug 2021 21:15:43