18 matches found
SUSE-SU-2026:2301-1 Security update for mutt
This update for mutt fixes the following issues - CVE-2026-43859: strfcpy used instead of memcpy for the IMAP authcram MD5 digest bsc1263897. - CVE-2026-43860: truncation of hashpasswd by one byte for IMAP authcram MD5 digest bsc1263896. - CVE-2026-43861: missing check for \0 in urlpctdecode...
SUSE-SU-2026:2300-1 Security update for mutt
This update for mutt fixes the following issues - CVE-2026-43859: strfcpy used instead of memcpy for the IMAP authcram MD5 digest bsc1263897. - CVE-2026-43860: truncation of hashpasswd by one byte for IMAP authcram MD5 digest bsc1263896. - CVE-2026-43861: missing check for \0 in urlpctdecode...
SUSE CVE-2026-43860
mutt before 2.3.2 sometimes truncates the hashpasswd by one byte for IMAP authcram MD5 digest...
SUSE CVE-2026-43862
In mutt before 2.3.2, the imapauthgss security level is mishandled...
CVE-2026-43860
mutt before 2.3.2 sometimes truncates the hashpasswd by one byte for IMAP authcram MD5 digest...
CVE-2026-43862
In mutt before 2.3.2, the imapauthgss security level is mishandled...
CVE-2026-43862
In mutt before 2.3.2, the imapauthgss security level is mishandled...
CVE-2026-43862
In mutt before 2.3.2, the imapauthgss security level is mishandled...
EUVD-2026-26900
In mutt before 2.3.2, the imapauthgss security level is mishandled...
CVE-2026-43862
In mutt before 2.3.2, the imapauthgss security level is mishandled...
CVE-2026-43862
CVE-2026-43862 concerns mutt prior to 2.3.2, where the imap_auth_gss security level is mishandled. Affected software: mutt (before 2.3.2). Root cause: mishandling of the imap_auth_gss security level. Impact (per CVSS): low overall impact (Confidentiality: None, Integrity: Low, Availability: None)...
CVE-2026-43862
In mutt before 2.3.2, the imapauthgss security level is mishandled...
CVE-2026-43859
mutt before 2.3.2 sometimes uses strfcpy instead of memcpy for the IMAP authcram MD5 digest...
CVE-2026-43859
mutt before 2.3.2 sometimes uses strfcpy instead of memcpy for the IMAP authcram MD5 digest...
Linux Distros Unpatched Vulnerability : CVE-2026-43862
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In mutt before 2.3.2, the imapauthgss security level is mishandled. CVE-2026-43862 Note that Nessus relies on the presence of the package as reported by the...
PT-2026-36773
Name of the Vulnerable Software and Affected Versions mutt versions prior to 2.3.2 Description An issue exists where the hash passwd is occasionally truncated by one byte during IMAP auth cram MD5 digest processes. Recommendations Update to version 2.3.2 or later...
WordPress WP IMAP Auth plugin <= 4.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin WP IMAP Auth versions = 4.0.1...
SUSE-SA:2005:012: imap
The remote host is missing the patch for the advisory SUSE-SA:2005:012 imap. The University of Washington imap daemon can be used to access mails remotely using the IMAP protocol. This update fixes a logical error in the challenge response authentication mechanism CRAM-MD5 used by UW IMAP. Due to...