mutt security update

CentOS Errata and Security Advisory CESA-2018:2526

Mutt is a low resource, highly configurable, text-based MIME e-mail client. Mutt supports most e-mail storing formats, such as mbox and Maildir, as well as most protocols, including POP3 and IMAP.

Security Fix(es):

• mutt: Remote code injection vulnerability to an IMAP mailbox (CVE-2018-14354)

• mutt: Remote Code Execution via backquote characters (CVE-2018-14357)

• mutt: POP body caching path traversal vulnerability (CVE-2018-14362)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2018-August/085150.html
https://lists.centos.org/pipermail/centos-announce/2018-August/085154.html

Affected packages:
mutt

Upstream details at:
https://access.redhat.com/errata/RHSA-2018:2526