Affected versions: - Apache James server 3.8.0 through 3.8.1 - Apache James server through 3.7.5
Description: Apache James server JMAP HTML to text plain implementation in versions below 3.8.2 and 3.7.6 is subject to unbounded memory consumption that can result in a denial of service. Users are recommended to upgrade to version 3.7.6 and 3.8.2, which fix this issue. Credit: Benoit TELLIER (finder) Wojciech Kapcia (finder) References: https://james.apache.org/ https://www.cve.org/CVERecord?id=CVE-2024-45626
