VYPR

libspf2

by Shevek

CVEs (1)

  • CVE-2021-33913CriJan 19, 2022
    risk 0.64cvss 9.8epss 0.10

    libspf2 before 1.2.11 has a heap-based buffer overflow that might allow remote attackers to execute arbitrary code (via an unauthenticated e-mail message from anywhere on the Internet) with a crafted SPF DNS record, because of SPF_record_expand_data in spf_expand.c. The amount…