Postsrsd ProjectCVEs & Vulnerabilities
2 CVEs affecting Postsrsd Project products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
postsrsd 2
CVE-2021-35525MEDIUM
PostSRSd before 1.11 allows a denial of service (subprocess hang) if Postfix sends certain long data fields such as multiple concatenated email addresses. NOTE: the PostSRSd maintainer acknowledges "theoretically, this error should never occur ... I'm not sure if there's a reliable way to trigger this condition by an external attacker, but it is a security bug in PostSRSd nevertheless."
28 Jun 2021
5.3
CVSS
CVE-2020-35573HIGH
srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service (CPU consumption) via a long timestamp tag in an SRS address.
20 Dec 2020
7.5
CVSS
← PrevPage 1 / 1Next →