Lucene search

K
debianDebianDEBIAN:DSA-4277-1:A5B5F
HistoryAug 17, 2018 - 6:15 p.m.

[SECURITY] [DSA 4277-1] mutt security update

2018-08-1718:15:34
lists.debian.org
12

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.01 Low

EPSS

Percentile

82.9%


Debian Security Advisory DSA-4277-1 [email protected]
https://www.debian.org/security/ Salvatore Bonaccorso
August 17, 2018 https://www.debian.org/security/faq


Package : mutt
CVE ID : CVE-2018-14349 CVE-2018-14350 CVE-2018-14351 CVE-2018-14352
CVE-2018-14353 CVE-2018-14354 CVE-2018-14355 CVE-2018-14356
CVE-2018-14357 CVE-2018-14358 CVE-2018-14359 CVE-2018-14360
CVE-2018-14361 CVE-2018-14362 CVE-2018-14363
Debian Bug : 904051

Several vulnerabilities were discovered in Mutt, a text-based mailreader
supporting MIME, GPG, PGP and threading, potentially leading to code
execution, denial of service or information disclosure when connecting
to a malicious mail/NNTP server.

For the stable distribution (stretch), these problems have been fixed in
version 1.7.2-1+deb9u1.

We recommend that you upgrade your mutt packages.

For the detailed security status of mutt please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/mutt

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.01 Low

EPSS

Percentile

82.9%

Related for DEBIAN:DSA-4277-1:A5B5F