EPSS
Percentile
89.9%
libspf2 is vulnerable to remote code execution. The vulnerability exists due to a heap-based buffer overflow that allowing an attacker to inject maliciously crafted script into the system.
github.com/shevek/libspf2/commit/ee4719544d891734090c24406f2bef8935ab3cf9
github.com/shevek/libspf2/pull/35
github.com/shevek/libspf2/tree/8131fe140704eaae695e76b5cd09e39bd1dd220b
lists.debian.org/debian-lts-announce/2022/01/msg00015.html
nathanielbennett.com/blog/libspf2-cve-jan-2022-disclosure