Showing 1 - 4 of 4

CVE-2021-20314

Status Candidate

Overview

Stack buffer overflow in libspf2 versions below 1.2.11 when processing certain SPF macros can lead to Denial of service and potentially code execution via malicious crafted SPF explanation messages.

Related Files

Ubuntu Security Notice USN-6584-2: Posted Feb 21, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 6584-2 - USN-6584-1 fixed several vulnerabilities in Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. This update provides the corresponding updates for CVE-2021-33912 andCVE-2021-33913 in Ubuntu 16.04 LTS. Philipp Jeitner and Haya Shulman discovered that Libspf2 incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service or execute arbitrary code.; tags | advisory, remote, denial of service, arbitrary, vulnerability; systems | linux, ubuntu; advisories | CVE-2021-20314, CVE-2021-33912; SHA-256 | c72593cd020b70c074deb6be89fd467cc478f83334792bd3c97e0f5753dae9cd; Download | Favorite | View

Gentoo Linux Security Advisory 202401-22: Posted Jan 16, 2024; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202401-22 - Multiple vulnerabilities have been discovered in libspf2, the worst of which can lead to remote code execution. Versions greater than or equal to 1.2.11 are affected.; tags | advisory, remote, vulnerability, code execution; systems | linux, gentoo; advisories | CVE-2021-20314, CVE-2021-33912, CVE-2021-33913; SHA-256 | 4df9712baaacd6e6f669da956478624a2d0582ad60f2fbd6ecdc17e27f5e2396; Download | Favorite | View

Ubuntu Security Notice USN-6584-1: Posted Jan 16, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 6584-1 - Philipp Jeitner and Haya Shulman discovered that Libspf2 incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service or execute arbitrary code. It was discovered that Libspf2 incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS.; tags | advisory, remote, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2021-20314; SHA-256 | 486e45e1623fd297d952a83d392ee0ab81d01bc53495bad464db7ee92f739a3a; Download | Favorite | View

Debian Security Advisory 4955-1: Posted Aug 28, 2021; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4955-1 - Philipp Jeitner and Haya Shulman discovered a stack-based buffer overflow in libspf2, a library for validating mail senders with SPF, which could result in denial of service, or potentially execution of arbitrary code when processing a specially crafted SPF record.; tags | advisory, denial of service, overflow, arbitrary; systems | linux, debian; advisories | CVE-2021-20314; SHA-256 | 6564d32f37928be06a9316fcdbbad6ae35a20a9b97b6589dd788e5a94c66328e; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 223 files
Ubuntu 57 files
LiquidWorm 23 files
Debian 19 files
indoushka 15 files
Apple 9 files
Google Security Research 5 files
Gentoo 5 files
Chokri Hammedi 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,158)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,830)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,245)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,969)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

CVE-2021-20314

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems