OpenDMARC: Heap-based buffer overflow (GLSA-202011-02) Release Date: November 03, 2020 Last Revised: November 03, 2020: 1 Severity: normal Exploitability: local, remote Affected Packages: Background: OpenDMARC is an open-source implementation of DMARC. Description: It was discovered that OpenDMARC did not properly handle DMARC aggregate reports. Impact: Remote attackers could send specially crafted DMARC aggregate reports, potentially causing a denial of service and, depending on how the OpenDMARC library is linked in applications, execute arbitrary code with process privileges. Solution: All OpenDMARC users should upgrade to the latest version: Vulnerability ID: CVE-2020-12460 Bugzilla Report: 734158