10 matches found
openSUSE: Security Advisory for isync (openSUSE-SU-2021:0516-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2021:0533-1 Security update for isync
This update for isync fixes the following issues: - isync was updated to version 1.3.5 - CVE-2021-20247: reject funny mailbox names from IMAP LIST/LSUB boo1182488 This update was imported from the openSUSE:Leap:15.2:Update update project...
openSUSE Security Update : isync (openSUSE-2021-516)
This update for isync fixes the following issues : - isync was updated to version 1.3.5 - CVE-2021-20247: reject funny mailbox names from IMAP LIST/LSUB boo1182488 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
OPENSUSE-SU-2021:0516-1 Security update for isync
This update for isync fixes the following issues: - isync was updated to version 1.3.5 - CVE-2021-20247: reject funny mailbox names from IMAP LIST/LSUB boo1182488...
Security update for isync (important)
openSUSE Security Update: Security update for isync Announcement ID: openSUSE-SU-2021:0516-1 Rating: important References: 1182488 Cross-References: CVE-2021-20247 CVSS scores: CVE-2021-20247 NVD : 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Leap 15.2 An update th...
Fedora 33 : isync (2021-ef8c2acfce)
The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-ef8c2acfce advisory. - A flaw was found in mbsync before v1.3.5 and v1.4.1. Validations of the mailbox names returned by IMAP LIST/LSUB do not occur allowing a malicious...
Fedora 32 : isync (2021-954ebabcf7)
The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-954ebabcf7 advisory. - A flaw was found in mbsync before v1.3.5 and v1.4.1. Validations of the mailbox names returned by IMAP LIST/LSUB do not occur allowing a malicious...
CVE-2021-20247
creationtimestamp| type| source ---|---|--- 2021-02-23 22:35:30+00:00| seen| https://t.me/cibsecurity/24037...
CVE-2021-20247
A flaw was found in mbsync before v1.3.5 and v1.4.1. Validations of the mailbox names returned by IMAP LIST/LSUB do not occur allowing a malicious or compromised server to use specially crafted mailbox names containing '..' path components to access data outside the designated mailbox on the...
CVE-2021-20247
The CVE-2021-20247 issue affects isync/mbsync before v1.3.5 and v1.4.1. The root cause is that validations of mailbox names returned by IMAP LIST/LSUB do not occur, allowing a malicious or compromised IMAP server to craft mailbox names with .. components to access data outside the intended mailbo...