srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service (CPU consumption) via a long timestamp tag in an SRS address.
The product performs an iteration or loop without sufficiently limiting the number of times that the loop is executed.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Postsrsd | Postsrsd_project | * | 1.10 (excluding) |
Postsrsd | Ubuntu | bionic | * |
Postsrsd | Ubuntu | groovy | * |
Postsrsd | Ubuntu | hirsute | * |
Postsrsd | Ubuntu | impish | * |
Postsrsd | Ubuntu | kinetic | * |
Postsrsd | Ubuntu | trusty | * |
Postsrsd | Ubuntu | upstream | * |
Postsrsd | Ubuntu | xenial | * |