CVE-2026-43964

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Postfix versions prior to 3.8.16 Postfix versions 3.9 prior to 3.9.10 Postfix versions 3.10 prior to 3.10.9

Description A buffer over-read can occur, potentially leading to a process crash, when an enhanced status code is used that lacks text after the third number.

Recommendations Update to version 3.8.16 or later. Update to version 3.9.10 or later. Update to version 3.10.9 or later.

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-193

Related Identifiers

CVE-2026-43964

OESA-2026-2209

OESA-2026-2288

OESA-2026-2289

OESA-2026-2290

OESA-2026-2291

OPENSUSE-SU-2026:10707-1

USN-8253-1

Affected Products

Linuxmint

Postfix

Ubuntu

CVE-2026-43964

Weakness Enumeration

Related Identifiers

Affected Products

References · 33