Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 5 of 5 results


CVE-2023-42118

Medium priority
Vulnerable

Exim libspf2 Integer Underflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Exim libspf2. Authentication is not required to...

2 affected packages

exim4, libspf2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
exim4 Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
libspf2 Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2021-33913

Medium priority

Some fixes available 3 of 6

libspf2 before 1.2.11 has a heap-based buffer overflow that might allow remote attackers to execute arbitrary code (via an unauthenticated e-mail message from anywhere on the Internet) with a crafted SPF DNS record, because of...

1 affected packages

libspf2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libspf2 Not affected Not affected Fixed Fixed Fixed
Show less packages

CVE-2021-33912

Medium priority

Some fixes available 3 of 6

libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that might allow remote attackers to execute arbitrary code (via an unauthenticated e-mail message from anywhere on the Internet) with a crafted SPF DNS record,...

1 affected packages

libspf2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libspf2 Not affected Not affected Fixed Fixed Fixed
Show less packages

CVE-2021-20314

Medium priority

Some fixes available 3 of 6

Stack buffer overflow in libspf2 versions below 1.2.11 when processing certain SPF macros can lead to Denial of service and potentially code execution via malicious crafted SPF explanation messages.

1 affected packages

libspf2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libspf2 Not affected Fixed Fixed Fixed
Show less packages

CVE-2008-2469

High priority
Fixed

Heap-based buffer overflow in the SPF_dns_resolv_lookup function in Spf_dns_resolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field.

1 affected packages

libspf2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libspf2
Show less packages