373 matches found
CVE-2021-32055
Mutt 1.11.0 through 2.0.x before 2.0.7 and NeoMutt 2019-10-25 through 2021-05-04 has a $imapqresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imapqresync setting for QRESYNC is not enabled by default...
Out-of-bounds
Mutt 1.11.0 through 2.0.x before 2.0.7 and NeoMutt 2019-10-25 through 2021-05-04 has a $imapqresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imapqresync setting for QRESYNC is not enabled by default...
CVE-2021-32055
Mutt 1.11.0 through 2.0.x before 2.0.7 and NeoMutt 2019-10-25 through 2021-05-04 has a $imapqresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imapqresync setting for QRESYNC is not enabled by default...
UBUNTU-CVE-2021-32055
Mutt 1.11.0 through 2.0.x before 2.0.7 and NeoMutt 2019-10-25 through 2021-05-04 has a $imapqresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imapqresync setting for QRESYNC is not enabled by default...
CVE-2021-32055
CVE-2021-32055 affects Mutt 1.11.0–2.0.x (before 2.0.7) and NeoMutt up to 2021-05-04, due to an out-of-bounds read in imap/util.c when an IMAP sequence ends with a comma. The issue is tied to QRESYNC via the $imap_qresync setting (not enabled by default). Remediation per connected advisories incl...
CVE-2021-32055
Mutt 1.11.0 through 2.0.x before 2.0.7 and NeoMutt 2019-10-25 through 2021-05-04 has a $imapqresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imapqresync setting for QRESYNC is not enabled by default...
PT-2021-4065 · Neomutt +4 · Neomutt +4
Name of the Vulnerable Software and Affected Versions: Mutt versions 1.11.0 through 2.0.x before 2.0.7 NeoMutt versions 2019-10-25 through 2021-05-04 Description: The issue is related to incorrect handling of an IMAP sequence set that ends with a comma in the imap/util.c component of Mutt and...
The vulnerability of Mutt and NeoMutt email clients stems from deficiencies in the process of neutralizing special characters in the output data used by the incoming component. This allows attackers to gain unauthorized access to protected information.
The vulnerability of Mutt and NeoMutt email clients is related to deficiencies in the process of neutralizing special elements in the output data used by the incoming component. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected...
EulerOS 2.0 SP2 : mutt (EulerOS-SA-2021-1330)
According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate...
GLSA-202101-32 : Mutt, NeoMutt: Information disclosure
The remote host is affected by the vulnerability described in GLSA-202101-32 Mutt, NeoMutt: Information disclosure A weakness in TLS handshake handling was found which may allow information disclosure. Impact : A remote attacker may be able to cause information disclosure. Workaround : There is n...
Mutt, NeoMutt: Information disclosure
Background Mutt is a small but very powerful text-based mail client. NeoMutt is a command line mail reader or MUA. It’s a fork of Mutt with added features. Description A weakness in TLS handshake handling was found which may allow information disclosure. Impact A remote attacker may be able to...
Buffer Overflow
NeoMutt is vulnerable to buffer overflow. The vulnerability exist because of incorrect sscanf usage...
Insecure Validation
neomutt does not perform secure validation. The newsrc.c does not properly restrict '/ characters, which could result in unsafe interaction with cache pathnames...
OPENSUSE-SU-2020:2158-1 Security update for neomutt
This update for neomutt fixes the following issues: Update neomutt to 20201120. Address boo1179035, CVE-2020-28896. Security - imap: close connection on all failures Features - alias: add function to Alias/Query dialogs - config: add validators for imap,smtp,popauthenticators - config: warn when...
OPENSUSE-SU-2020:2157-1 Security update for neomutt
This update for neomutt fixes the following issues: Update neomutt to 20201120. Address boo1179035, CVE-2020-28896. Security - imap: close connection on all failures Features - alias: add function to Alias/Query dialogs - config: add validators for imap,smtp,popauthenticators - config: warn when...
Security update for neomutt (moderate)
openSUSE Security Update: Security update for neomutt Announcement ID: openSUSE-SU-2020:2158-1 Rating: moderate References: 1172906 1172935 1173197 1179035 1179113 Cross-References: CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 CVE-2020-28896 Affected Products: openSUSE Backports SLE-15-SP2 An...
Security update for neomutt (moderate)
openSUSE Security Update: Security update for neomutt Announcement ID: openSUSE-SU-2020:2157-1 Rating: moderate References: 1172906 1172935 1173197 1179035 1179113 Cross-References: CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 CVE-2020-28896 Affected Products: openSUSE Backports SLE-15-SP1 An...
openSUSE Security Update : neomutt (openSUSE-2020-2127)
This update for neomutt fixes the following issues : Update neomutt to 20201120. Address boo1179035, CVE-2020-28896. - Security - imap: close connection on all failures - Features - alias: add function to Alias/Query dialogs - config: add validators for imap,smtp,popauthenticators - config: warn...
Security update for neomutt (moderate)
openSUSE Security Update: Security update for neomutt Announcement ID: openSUSE-SU-2020:2127-1 Rating: moderate References: 1172906 1172935 1173197 1179035 1179113 Cross-References: CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 CVE-2020-28896 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15....
OPENSUSE-SU-2020:2127-1 Security update for neomutt
This update for neomutt fixes the following issues: Update neomutt to 20201120. Address boo1179035, CVE-2020-28896. Security - imap: close connection on all failures Features - alias: add function to Alias/Query dialogs - config: add validators for imap,smtp,popauthenticators - config: warn when...