CVE-2021-34555

Name of the Vulnerable Software and Affected Versions OpenDMARC versions 1.4.1 through 1.4.1.1

Description The issue is related to a denial of service caused by a NULL pointer dereference and application crash. This can be triggered by remote attackers via a multi-value From header field. The vulnerability is associated with errors in pointer dereferencing, allowing a remote attacker to cause a denial of service.

Recommendations For OpenDMARC versions 1.4.1 through 1.4.1.1, consider disabling the handling of multi-value From header fields as a temporary workaround until a patch is available. Restrict access to the application to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.