Search CVE reports
11 – 20 of 41 results
Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate.
1 affected package
mutt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mutt | — | — | Fixed | Fixed |
Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response.
1 affected package
mutt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mutt | — | — | Fixed | Fixed |
Some fixes available 1 of 2
An issue was discovered in NeoMutt before 2018-07-16. newsrc.c does not properly restrict '/' characters that may have unsafe interaction with cache pathnames.
1 affected package
neomutt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| neomutt | Not affected | Not affected | Not affected | Fixed |
Some fixes available 17 of 19
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c does not forbid characters that may have unsafe interaction with message-cache pathnames, as demonstrated by a '/' character.
2 affected packages
mutt, neomutt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mutt | Fixed | Fixed | Fixed | Fixed |
| neomutt | Not affected | Not affected | Not affected | Fixed |
Some fixes available 1 of 2
An issue was discovered in NeoMutt before 2018-07-16. nntp.c proceeds even if memory allocation fails for messages data.
1 affected package
neomutt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| neomutt | Not affected | Not affected | Not affected | Fixed |
Some fixes available 1 of 2
An issue was discovered in NeoMutt before 2018-07-16. nntp_add_group in newsrc.c has a stack-based buffer overflow because of incorrect sscanf usage.
1 affected package
neomutt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| neomutt | Not affected | Not affected | Not affected | Fixed |
Some fixes available 17 of 19
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They have a buffer overflow via base64 data.
2 affected packages
mutt, neomutt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mutt | Fixed | Fixed | Fixed | Fixed |
| neomutt | Not affected | Not affected | Not affected | Fixed |
Some fixes available 17 of 19
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/message.c has a stack-based buffer overflow for a FETCH response with a long RFC822.SIZE field.
2 affected packages
mutt, neomutt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mutt | Fixed | Fixed | Fixed | Fixed |
| neomutt | Not affected | Not affected | Not affected | Fixed |
Some fixes available 17 of 19
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with an automatic subscription.
2 affected packages
mutt, neomutt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mutt | Fixed | Fixed | Fixed | Fixed |
| neomutt | Not affected | Not affected | Not affected | Fixed |
Some fixes available 17 of 19
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c mishandles a zero-length UID.
2 affected packages
mutt, neomutt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mutt | Fixed | Fixed | Fixed | Fixed |
| neomutt | Not affected | Not affected | Not affected | Fixed |