logo

Database

Asymmetric denial of service - ReDoS In perl-email-address-list

Description

The email-ingestion feature in Best Practical Request Tracker 4.1.13 through 4.4 allows denial of service by remote attackers via an algorithmic complexity attack on email address parsing.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

1-10 of 18

10

Aliases

1. CVE-2018-188982. NVD-2018-188983. OSV-ALPINE-2018-188984. OSV-2018-188985. OSV-DEBIAN-2018-188986. SECURITY-CVE-2018-188987. SECURITY-TRACKER-CVE-2018-18898

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.