logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-14362

Description

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c does not forbid characters that may have unsafe interaction with message-cache pathnames, as demonstrated by a '/' character.


Affected Package


OS OS Version Package Name Package Version
ubuntu 18.04 mutt 1.9.4-3ubuntu0.1
ubuntu 18.10 mutt 1.10.1-1
ubuntu 19.04 mutt 1.10.1-1
ubuntu 19.10 mutt 1.10.1-1
ubuntu 20.04 mutt 1.10.1-1
ubuntu 20.10 mutt 1.10.1-1
ubuntu 21.04 mutt 1.10.1-1
ubuntu 21.10 mutt 1.10.1-1
ubuntu 22.04 mutt 1.10.1-1
ubuntu upstream mutt 1.10.1-1
ubuntu 12.04 mutt 1.5.21-5ubuntu2.3
ubuntu 14.04 mutt trusty was released [1.5.21-6.4ubuntu2.2]
ubuntu upstream mutt 1.10.1
ubuntu 16.04 mutt 1.5.24-1ubuntu0.1
ubuntu 18.04 neomutt any
ubuntu upstream neomutt 20180716+dfsg.1-1

Related