CVE-2025-43857: Ruby Net Imap Hardcoded Limit

The IMAP client enforces a hardcoded response size limit of 512 MiB, which is excessively high and permits memory exhaustion denial-of-service from maliciously sized server payloads.

Provally CuratedPublic repositoryMediumMedium confidenceVerifiedApache-2.0

Ruby^β

greprules fetch cve-2025-43857-ruby-net-imap-hardcoded-limit --engine opengrep

Description

The IMAP client enforces a hardcoded response size limit of 512 MiB, which is excessively high and permits memory exhaustion denial-of-service from maliciously sized server payloads.

License: Apache-2.0
Source context: Public repository
Source: Provally CVE rule catalog
Validation status: Verified
Quality signals: 145 downloads
0 direct145 via packs
· 0 stars · Quality score 65How quality works
Included packs: 2 packs

Community feedback

0 signals from signed-in users.

Useful: 0
False positive: 0
Metadata: 0