{"schema_version": "1.6.1", "id": "CVE-2024-45626", "summary": "Apache James: denial of service through JMAP HTML to text conversion", "details": "Apache James server JMAP HTML to text plain implementation in versions below 3.8.2 and 3.7.6 is subject to unbounded memory consumption that can result in a denial of service.\n\nUsers are recommended to upgrade to version 3.7.6 and 3.8.2, which fix this issue.", "affected": [{"ranges": [{"type": "SEMVER", "events": [{"introduced": "3.8.0"}, {"last_affected": "3.8.0"}]}, {"type": "SEMVER", "events": [{"introduced": "0"}, {"last_affected": "0"}]}]}], "references": [{"type": "WEB", "url": "https://lists.apache.org/thread/1fr9hvpsylomwwfr3rv82g84sxszn4kl"}]}