FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mail/mailpit -- memory-exhaustion DoS via unbounded JSON body

Affected packages
mailpit < 1.30.1

Details

VuXML ID 7ae38fde-5ab6-11f1-a242-10ffe07f9334
Discovery 2026-05-28
Entry 2026-05-28

Mailpit author reports:

Sibling-endpoint memory-exhaustion DoS via unbounded JSON body on /api/v1/messages, /api/v1/tags, and /api/v1/message/{id}/release

[source]

References

CVE Name CVE-2026-48824
URL https://github.com/axllent/mailpit/security/advisories/GHSA-28pq-6qxg-wg5r

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.