2 matches found
Debian Security Advisory DSA 2416-1 (notmuch)
The remote host is missing an update to notmuch announced via advisory DSA 2416-1. OpenVAS Vulnerability Test $Id: deb24161.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2416-1 notmuch Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Debian DSA-2416-1 : notmuch - information disclosure
It was discovered that Notmuch, an email indexer, did not sufficiently escape Emacs MML tags. When using the Emacs interface, a user could be tricked into replying to a maliciously formatted message which could lead to files from the local machine being attached to the outgoing message...