CVE-2020-12460 - OpenDMARC 1.4.1 and 1.4.1.1 include a bug where a
multi-valued from field can, if improperly formed, cause the OpenDMARC
milter to crash.

Link: https://nvd.nist.gov/vuln/detail/CVE-2021-34555

Resolution: OpenDMARC has repaired the function in question, as of 
OpenDMARC 1.4.2 (December 2021).  The dmarcf_mail_parse_multi() function
now returns the number of addresses to walk and checks all of them.
