141 matches found
EUVD-2007-2950
Malware in sbrugna...
EUVD-2012-5419
Malware in sbrugna...
EUVD-2020-7889
Malware in sbrugna...
EUVD-2021-24227
Malware in sbrugna...
EUVD-2014-2608
Malware in sbrugna...
EUVD-2015-8585
Malware in sbrugna...
EUVD-2015-8491
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2020-15917
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - common/session.c in Claws Mail before 3.17.6 has a protocol violation because suffix data after STARTTLS is mishandled. CVE-2020-15917 Note that Nessus relies o...
Linux Distros Unpatched Vulnerability : CVE-2021-37746
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - textviewurisecuritycheck in textview.c in Claws Mail before 3.18.0, and Sylpheed through 3.7.0, does not have sufficient link checks before accepting a click...
Linux Distros Unpatched Vulnerability : CVE-2015-8614
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple stack-based buffer overflows in the 1 convjistoeuc, 2 conveuctojis, and 3 convsjistoeuc functions in codeconv.c in Claws Mail before 3.13.1 allow remot...
OPENSUSE-SU-2024:10686-1 claws-mail-4.0.0-2.5 on GA media
These are all security issues fixed in the claws-mail-4.0.0-2.5 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:10428-1 claws-mail-3.14.1-1.1 on GA media
These are all security issues fixed in the claws-mail-3.14.1-1.1 package on the GA media of openSUSE Tumbleweed...
SUSE CVE-2014-2576
plugins/rssyl/feed.c in Claws Mail before 3.10.0 disables the CURLOPTSSLVERIFYHOST check for CN or SAN host name fields, which makes it easier for remote attackers to spoof servers and conduct man-in-the-middle MITM attacks...
SUSE CVE-2015-8614
Multiple stack-based buffer overflows in the 1 convjistoeuc, 2 conveuctojis, and 3 convsjistoeuc functions in codeconv.c in Claws Mail before 3.13.1 allow remote attackers to have unspecified impact via a crafted email, involving Japanese character set conversion...
SUSE CVE-2015-8708
Stack-based buffer overflow in the conveuctojis function in codeconv.c in Claws Mail 3.13.1 allows remote attackers to have unspecified impact via a crafted email, involving Japanese character set conversion. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8614...
SUSE CVE-2019-10735
In Claws Mail 3.14.1, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the...
SUSE CVE-2020-15917
common/session.c in Claws Mail before 3.17.6 has a protocol violation because suffix data after STARTTLS is mishandled...
SUSE CVE-2020-16094
In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...
SUSE CVE-2021-37746
textviewurisecuritycheck in textview.c in Claws Mail before 3.18.0, and Sylpheed through 3.7.0, does not have sufficient link checks before accepting a click...
MGASA-2021-0408 Updated sylpheed and claws-mail packages fix security vulnerability
Updated sylpheed and claws-mail packages fix security vulnerability: The textviewurisecuritycheck function in textview.c in Claws Mail before 3.18.0, and Sylpheed through 3.7.0, does not have sufficient link checks before accepting a click CVE-2021-37746...