Veracode Vulnerability DatabaseVERACODE:28652

HistoryDec 20, 2020 - 9:38 p.m.

Denial Of Service (DoS)

2020-12-2021:38:50

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

vulnerability

postsrsd

dos

cpu consumption

srs address

EPSS

0.007

Percentile

80.1%

JSON

postsrsd is vulnerable to denial of service (DoS). The vulnerability exists as srs2.c allows remote attackers to cause a denial of service (CPU consumption) via a long timestamp tag in an SRS address.

References

github.com/roehling/postsrsd/commit/4733fb11f6bec6524bb8518c5e1a699288c26bac

lists.debian.org/debian-lts-announce/2020/12/msg00031.html

security-tracker.debian.org/tracker/CVE-2020-35573

security.gentoo.org/glsa/202107-08

EPSS

0.007

Percentile

80.1%

JSON

Related for VERACODE:28652