Bug#960062: closed by gregor herrmann (Re: Bug#960062:)

Hi On Wed, Feb 21, 2024 at 07:57:06PM +, Debian Bug Tracking System wrote: [...] > Version: 1.949-1 > > On Tue, 28 Nov 2023 11:43:27 +0100, Miriam Espana Acebal wrote: > > > I'm working on this package on Ubuntu, to promote it from universe to main. > > I saw this bug, and it could be a blo

Bug#960062:

Hi, I'm working on this package on Ubuntu, to promote it from universe to main. I saw this bug, and it could be a blocker for that process. Reading the changes files, the following entry seems to be related (per the comments on upstream's issue [1] too): 1.947 2020-05-09 14:30:06-04:00 A

Bug#960062: Acknowledgement (libemail-mime-perl: DoS on excessive or deeply nested parts)

tags 960062 + security quit Oops, forgot security tag :x

Bug#960062: libemail-mime-perl: DoS on excessive or deeply nested parts

Package: libemail-mime-perl Version: 1.946-1 Severity: important Tags: upstream Messages with too many tiny MIME parts can OOM on split(). Messages with many nested MIME parts can also fail on deep recursion (Email::MIME->new calls ->subparts, ->subparts calls ->new, ad infinitum). Smallish mess