CVE-2024-25768

Name
CVE-2024-25768
Description
OpenDMARC 1.4.2 contains a null pointer dereference vulnerability in /OpenDMARC/libopendmarc/opendmarc_policy.c.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
cve@mitre.org https://github.com/LuMingYinDetect/OpenDMARC_defects/blob/main/OpenDMARC_detect_1.md

Match rules

CPE URI Source package Min version Max version
n/a == n/a == n/a
cpe:2.3:a:trusteddomain:opendmarc:1.4.2:*:*:*:*:*:*:* opendmarc == None == 1.4.2

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
opendmarc edge-community 1.4.2-r3 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable
opendmarc edge-community 1.4.2-r2 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable
opendmarc edge-community 1.4.2-r1 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable
opendmarc 3.23-community 1.4.2-r3 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable
opendmarc 3.22-community 1.4.2-r1 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable