Debian Libemail-Address-List-Perl vulnerabilities
2 known vulnerabilities affecting debian/libemail-address-list-perl.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-18898HIGHCVSS 7.5fixed in libemail-address-list-perl 0.06-1 (bookworm)2018
CVE-2018-18898 [HIGH] CVE-2018-18898: libemail-address-list-perl - The email-ingestion feature in Best Practical Request Tracker 4.1.13 through 4.4...
The email-ingestion feature in Best Practical Request Tracker 4.1.13 through 4.4 allows denial of service by remote attackers via an algorithmic complexity attack on email address parsing.
Scope: local
bookworm: resolved (fixed in 0.06-1)
bullseye: resolved (fixed in 0.06-1)
forky: resolved (fixed in 0.06-1)
sid: resolved (fixed in 0.06-1)
trixie:
debian
CVE-2014-1474MEDIUMCVSS 5.0fixed in libemail-address-list-perl 0.03-1 (bookworm)2014
CVE-2014-1474 [MEDIUM] CVE-2014-1474: libemail-address-list-perl - Algorithmic complexity vulnerability in Email::Address::List before 0.02, as use...
Algorithmic complexity vulnerability in Email::Address::List before 0.02, as used in RT 4.2.0 through 4.2.2, allows remote attackers to cause a denial of service (CPU consumption) via a string without an address.
Scope: local
bookworm: resolved (fixed in 0.03-1)
bullseye: resolved (fixed in 0.03-1)
forky: resolved (fixed in 0.03-1)
sid: resolved (
debian