rjbs/Email-MIME

Releases61

Frequency3 months 2 weeks

Last Release about 2 years ago

Stars20

perl library for parsing MIME messages

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-4140 ↗	May 2, 2024Thursday, 2 May 2024, 20:15	7.5 HIGH	—
An excessive memory use issue (CWE-770) exists in Email-MIME, before version 1.954, which can cause denial of service when parsing multipart MIME messages. The patch set (from 2020 and 2024) limits excessive depth and the total number of parts.