Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-9116HistoryDec 02, 2014 - 4:59 p.m.
CVE-2014-9116
2014-12-0216:59:00
Debian Security Bug Tracker
security-tracker.debian.org
10
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.015 Low
EPSS
Percentile
87.0%
The write_one_header function in mutt 1.5.23 does not properly handle newline characters at the beginning of a header, which allows remote attackers to cause a denial of service (crash) via a header with an empty body, which triggers a heap-based buffer overflow in the mutt_substrdup function.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | mutt | < 1.5.23-2 | mutt_1.5.23-2_all.deb |
| Debian | 11 | all | mutt | < 1.5.23-2 | mutt_1.5.23-2_all.deb |
| Debian | 10 | all | mutt | < 1.5.23-2 | mutt_1.5.23-2_all.deb |
| Debian | 999 | all | mutt | < 1.5.23-2 | mutt_1.5.23-2_all.deb |
| Debian | 13 | all | mutt | < 1.5.23-2 | mutt_1.5.23-2_all.deb |
Related
fedora
fedora
[SECURITY] Fedora 21 Update: mutt-1.5.23-7.fc21
2015-02-15 03:02:04
[SECURITY] Fedora 20 Update: mutt-1.5.23-4.fc20
2015-02-15 02:57:04
osv
osv
mutt - security update
2014-12-05 00:00:00
mutt - security update
2014-11-30 00:00:00
nessus
nessus
Debian DSA-3083-1 : mutt - security update
2014-12-01 00:00:00
Fedora 20 : mutt-1.5.23-4.fc20 (2014-16494)
2015-02-16 00:00:00
Mandriva Linux Security Advisory : mutt (MDVSA-2014:245)
2014-12-15 00:00:00
openvas
openvas
Fedora Update for mutt FEDORA-2014-16494
2015-02-15 00:00:00
Debian: Security Advisory (DSA-3083-1)
2014-11-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0758-1)
2021-06-09 00:00:00
mageia
mageia
Updated mutt packages fix CVE-2014-9116
2014-12-05 18:54:13
securityvulns
securityvulns
mutt DoS
2014-12-01 00:00:00
[SECURITY] [DSA 3083-1] mutt security update
2014-12-01 00:00:00
debian
debian
[SECURITY] [DSA 3083-1] mutt security update
2014-11-30 13:48:08
[SECURITY] [DSA 3083-1] mutt security update
2014-11-30 13:47:51
ubuntucve
ubuntucve
CVE-2014-9116
2014-12-02 00:00:00
slackware
slackware
[slackware-security] mutt
2015-04-22 01:21:37
prion
prion
Heap overflow
2014-12-02 16:59:00
suse
suse
Security update for mutt (important)
2015-01-06 18:04:47
Security update for mutt (important)
2018-08-06 15:13:42
Security update for mutt (important)
2019-01-17 00:00:00
gentoo
gentoo
Mutt: Heap-based buffer overflow
2017-01-01 00:00:00
cve
cve
CVE-2014-9116
2014-12-02 16:59:00
archlinux
archlinux
mutt: denial of service
2015-03-09 00:00:00
freebsd
freebsd
mutt -- denial of service via crafted mail message
2014-11-26 00:00:00
ubuntu
ubuntu
Mutt vulnerability
2014-12-11 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.015 Low
EPSS
Percentile
87.0%
Related for DEBIANCVE:CVE-2014-9116