Lucene search
+L

279 matches found

Tenable Nessus
Tenable Nessus
added 2020/08/03 12:0 a.m.25 views

Fedora 32 : claws-mail (2020-2def860ce7)

Security fix for CVE-2020-15917 STARTTLS protocol violation. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing addition...

9.8CVSS8.2AI score0.02592EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/08/03 12:0 a.m.25 views

Fedora 31 : claws-mail (2020-fe6c1a9c16)

Security fix for CVE-2020-15917 STARTTLS protocol violation. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing addition...

9.8CVSS8.2AI score0.02592EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2020/08/03 12:0 a.m.50 views

Security update for claws-mail (moderate)

openSUSE Security Update: Security update for claws-mail Announcement ID: openSUSE-SU-2020:1139-1 Rating: moderate References: 1174457 Cross-References: CVE-2020-15917 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...

9.8CVSS9.4AI score0.02592EPSS
Exploits0References1
Fedora
Fedora
added 2020/08/02 1:24 a.m.44 views

[SECURITY] Fedora 32 Update: claws-mail-3.17.6-1.fc32

Claws Mail is an email client and news reader, based on GTK+, featuring quick response, graceful and sophisticated interface, easy configuration, intuitive operation, abundant features, and extensibility...

9.8CVSS2.1AI score0.02592EPSS
Exploits0
Fedora
Fedora
added 2020/08/02 1:9 a.m.56 views

[SECURITY] Fedora 31 Update: claws-mail-3.17.6-1.fc31

Claws Mail is an email client and news reader, based on GTK+, featuring quick response, graceful and sophisticated interface, easy configuration, intuitive operation, abundant features, and extensibility...

9.8CVSS2.1AI score0.02592EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/08/02 12:0 a.m.22 views

Fedora: Security Advisory for claws-mail (FEDORA-2020-2def860ce7)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.6AI score0.02592EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/08/02 12:0 a.m.22 views

Fedora: Security Advisory for claws-mail (FEDORA-2020-fe6c1a9c16)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.6AI score0.02592EPSS
Exploits0References2
OSV
OSV
added 2020/07/31 2:30 p.m.5 views

OPENSUSE-SU-2020:1116-1 Security update for claws-mail

This update for claws-mail fixes the following issues: - CVE-2020-15917: Fixed an improper handling of suffix data after STARTTLS is mishandled boo1174457...

9.8CVSS9.5AI score0.02592EPSS
Exploits0References3
OPENSUSE Linux
OPENSUSE Linux
added 2020/07/31 12:0 a.m.55 views

Security update for claws-mail (moderate)

openSUSE Security Update: Security update for claws-mail Announcement ID: openSUSE-SU-2020:1116-1 Rating: moderate References: 1174457 Cross-References: CVE-2020-15917 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...

9.8CVSS9.4AI score0.02592EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/07/30 12:0 a.m.33 views

GLSA-202007-56 : Claws Mail: Improper STARTTLS handling

The remote host is affected by the vulnerability described in GLSA-202007-56 Claws Mail: Improper STARTTLS handling It was discovered that Claws Mail was not properly handling state within the STARTTLS protocol handshake. Impact : There may be a breach of integrity or confidentiality in connectio...

9.8CVSS8.1AI score0.02592EPSS
Exploits0References2
CNVD
CNVD
added 2020/07/29 12:0 a.m.4 views

Claws Mail Stack Depletion Vulnerability

Claws Mail is an open source email client and news aggregator written in the GTK+ language. A security vulnerability exists in imapscantreerecursive in Claws Mail 3.17.6 and earlier versions. An attacker can exploit this vulnerability with the help of a malicious IMAP server to cause Claws Mail t...

7.5CVSS6.8AI score0.01781EPSS
Exploits1References1
NVD
NVD
added 2020/07/28 7:15 p.m.14 views

CVE-2020-16094

In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...

7.5CVSS7.4AI score0.01781EPSS
Exploits1References4
OSV
OSV
added 2020/07/28 7:15 p.m.2 views

DEBIAN-CVE-2020-16094

In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...

7.5CVSS7.3AI score0.01781EPSS
Exploits1References1
OSV
OSV
added 2020/07/28 7:15 p.m.9 views

CVE-2020-16094

In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...

7.5CVSS7.5AI score
Exploits0References4
Prion
Prion
added 2020/07/28 7:15 p.m.16 views

Design/Logic Flaw

In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...

5CVSS7.4AI score0.01781EPSS
Exploits1References4Affected Software2
UbuntuCve
UbuntuCve
added 2020/07/28 7:15 p.m.20 views

CVE-2020-16094

In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...

7.5CVSS7.1AI score0.01781EPSS
Exploits1References1
OSV
OSV
added 2020/07/28 7:15 p.m.12 views

UBUNTU-CVE-2020-16094

In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...

7.5CVSS7.1AI score0.01781EPSS
Exploits1References2
Cvelist
Cvelist
added 2020/07/28 6:34 p.m.42 views

CVE-2020-16094

In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...

7.4AI score0.01781EPSS
Exploits1References4
CVE
CVE
added 2020/07/28 6:34 p.m.93 views

CVE-2020-16094

CVE-2020-16094 affects Claws Mail up to version 3.17.6. The vulnerability is caused by unlimited recursion in imap_scan_tree_recursive during a folder-tree rebuild, leading to stack consumption. In practice, a malicious IMAP server can trigger excessive resource usage. Public details in connected...

7.5CVSS7.2AI score0.01781EPSS
Exploits1References4Affected Software1
AlpineLinux
AlpineLinux
added 2020/07/28 6:34 p.m.61 views

CVE-2020-16094

In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...

7.5CVSS7.4AI score0.01781EPSS
Exploits1
Rows per page
Query Builder