SUSE CVE-2026-43862

In mutt before 2.3.2, the imapauthgss security level is mishandled...

Linux Distros Unpatched Vulnerability : CVE-2020-14154

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate...

DLA-3574-1 mutt - security update

Bulletin has no description...

DSA-5494-1 mutt - security update

Bulletin has no description...

CVE-2023-4875 Undefined Behavior for Input to API in Mutt

Null pointer dereference when composing from a specially crafted draft message in Mutt 1.5.2 2.2.12...

CVE-2021-3181

rfc822.c in Mutt through 2.0.4 allows remote attackers to cause a denial of service mailbox unavailability by sending email messages with sequences of semicolon characters in RFC822 address fields aka terminators of empty groups. A small email message from the attacker can cause large memory...

SUSE-SU-2020:1794-1 Security update for mutt

This update for mutt fixes the following issues: - CVE-2020-14954: Fixed a response injection due to a STARTTLS buffering issue which was affecting IMAP, SMTP, and POP3 bsc1173197. - CVE-2020-14093: Fixed a potential IMAP Man-in-the-Middle attack via a PREAUTH response bsc1172906, bsc1172935. -...

CVE-2020-14154

Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate...

CVE-2014-9116

The writeoneheader function in mutt 1.5.23 does not properly handle newline characters at the beginning of a header, which allows remote attackers to cause a denial of service crash via a header with an empty body, which triggers a heap-based buffer overflow in the muttsubstrdup function...

mutt buffer overflow

Buffer overflow on headers parsing...

CVE-2003-0140

Buffer overflow in Mutt 1.4.0 and possibly earlier versions, 1.5.x up to 1.5.3, and other programs that use Mutt code such as Balsa before 2.0.10, allows a remote malicious IMAP server to cause a denial of service crash and possibly execute arbitrary code via a crafted folder...

CVE-2001-0473

Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands...

PT-1999-1479 · Mutt · Mutt

Name of the Vulnerable Software and Affected Versions: mutt affected versions not specified Description: The issue allows remote attackers to execute commands via malformed MIME messages due to a buffer overflow in the mutt mail client. Recommendations: At the moment, there is no information abou...