CVE-2021-35525

2021-06-2818:15:08

Debian Security Bug Tracker

security-tracker.debian.org

postsrsd

denial of service

security bug

postfix

long data fields

subprocess hang

external attacker

unix

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

EPSS

0.002

Percentile

53.1%

JSON

PostSRSd before 1.11 allows a denial of service (subprocess hang) if Postfix sends certain long data fields such as multiple concatenated email addresses. NOTE: the PostSRSd maintainer acknowledges “theoretically, this error should never occur … I’m not sure if there’s a reliable way to trigger this condition by an external attacker, but it is a security bug in PostSRSd nevertheless.”

OSVersionArchitecturePackageVersionFilename
Debian12allpostsrsd< 1.10-2postsrsd_1.10-2_all.deb
Debian11allpostsrsd< 1.10-2postsrsd_1.10-2_all.deb
Debian999allpostsrsd< 1.10-2postsrsd_1.10-2_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	postsrsd	< 1.10-2	postsrsd_1.10-2_all.deb
Debian	11	all	postsrsd	< 1.10-2	postsrsd_1.10-2_all.deb
Debian	999	all	postsrsd	< 1.10-2	postsrsd_1.10-2_all.deb