Debian Postsrsd vulnerabilities

CVE-2021-35525 [MEDIUM] CVE-2021-35525: postsrsd - PostSRSd before 1.11 allows a denial of service (subprocess hang) if Postfix sen... PostSRSd before 1.11 allows a denial of service (subprocess hang) if Postfix sends certain long data fields such as multiple concatenated email addresses. NOTE: the PostSRSd maintainer acknowledges "theoretically, this error should never occur ... I'm not sure if there's a reliable way to trigger this condition by an external attacker, but it is a security bug in

CVE-2020-35573 [HIGH] CVE-2020-35573: postsrsd - srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of serv... srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service (CPU consumption) via a long timestamp tag in an SRS address. Scope: local bookworm: resolved (fixed in 1.10-1) bullseye: resolved (fixed in 1.10-1) forky: resolved (fixed in 1.10-1) sid: resolved (fixed in 1.10-1) trixie: resolved (fixed in 1.10-1)