smtpd/table.c in OpenSMTPD before 6.8.0p1 lacks a certain regfree, which might allow attackers to trigger a "very significant" memory leak via messages to an instance that performs many regex lookups. Reference: https://www.mail-archive.com/misc@opensmtpd.org/msg05188.html Upstream patch: https://github.com/openbsd/src/commit/79a034b4aed29e965f45a13409268290c9910043
Created opensmtpd tracking bugs for this issue: Affects: epel-all [bug 1911291] Affects: fedora-all [bug 1911290]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.