First published: Tue Jun 19 2018(Updated: )
The parse() method in the Email::Address module through 1.909 for Perl is vulnerable to Algorithmic complexity on specially prepared input, leading to Denial of Service. Prepared special input that caused this problem contained 30 form-field characters ("\f").
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
debian/libemail-address-perl | <=1.908-1<=1.909-1 | 1.908-1+deb9u1 1.912-1 |
Email\ \ | <=1.909 | |
debian/libemail-address-perl | 1.912-1 1.913-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.