CVE-2023-52159 Information

Description

A stack-based buffer overflow vulnerability in gross 0.9.3 through 1.x before 1.0.4 allows remote attackers to trigger a denial of service (grossd daemon crash) or potentially execute arbitrary code in grossd via crafted SMTP transaction parameters that cause an incorrect strncat for a log entry.

Reference

https://codeberg.org/bizdelnick/gross/wiki/Known-vulnerabilities#cve-2023-52159