Jan Engelhardt

Name of the Vulnerable Software and Affected Versions: Kopano Groupware Core versions 8.7.16 and earlier, 9.x through 9.1.0, 10.x through 10.0.7, 11.x through 11.0.1 Zarafa versions 6.30.x through 7.2.x Description: The issue allows memory exhaustion via long HTTP headers. Recommendations: For Kopano Groupware Core versions 8.7.16 and earlier, update to a version later than 8.7.16. For Kopano Groupware Core versions 9.x through 9.1.0, update to a version later than 9.1.0. For Kopano Groupware Core versions 10.x through 10.0.7, update to a version later than 10.0.7. For Kopano Groupware Core versions 11.x through 11.0.1, update to a version later than 11.0.1. For Zarafa versions 6.30.x through 7.2.x, update to a version later than 7.2.x.