The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
The quoted-printable decoder in bogofilter 0.17.4 to 0.92.7 allows remote attackers to cause a denial of service (application crash) via mail headers that cause a line feed (LF) to be replaced by a null byte that is written to an incorrect memory address.
|36385||FreeBSD : bogofilter -- RFC 2047 decoder denial-of-service vulnerability (f4428842-a583-4a4c-89b7-297c3459a1c3)||Nessus||FreeBSD Local Security Checks|
|20641||Ubuntu 4.10 : bogofilter vulnerability (USN-26-1)||Nessus||Ubuntu Local Security Checks|
|15799||FreeBSD : bogofilter -- RFC 2047 decoder denial-of-service vulnerability (20)||Nessus||FreeBSD Local Security Checks|