Search CVE reports


Toggle filters

21 – 30 of 41 results


CVE-2018-14356

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c mishandles a zero-length UID.

2 affected packages

mutt, neomutt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mutt Fixed Fixed Fixed Fixed Fixed
neomutt Not affected Not affected Not affected Vulnerable Not in release
Show less packages

CVE-2018-14355

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/util.c mishandles ".." directory traversal in a mailbox name.

2 affected packages

mutt, neomutt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mutt Fixed Fixed Fixed Fixed Fixed
neomutt Not affected Not affected Not affected Vulnerable Not in release
Show less packages

CVE-2018-14354

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with a manual...

2 affected packages

mutt, neomutt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mutt Fixed Fixed Fixed Fixed Fixed
neomutt Not affected Not affected Not affected Vulnerable Not in release
Show less packages

CVE-2018-14353

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in imap/util.c has an integer underflow.

2 affected packages

mutt, neomutt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mutt Fixed Fixed Fixed Fixed Fixed
neomutt Not affected Not affected Not affected Vulnerable Not in release
Show less packages

CVE-2018-14352

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in imap/util.c does not leave room for quote characters, leading to a stack-based buffer overflow.

2 affected packages

mutt, neomutt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mutt Fixed Fixed Fixed Fixed Fixed
neomutt Not affected Not affected Not affected Vulnerable Not in release
Show less packages

CVE-2018-14351

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a long IMAP status mailbox literal count size.

2 affected packages

mutt, neomutt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mutt Fixed Fixed Fixed Fixed Fixed
neomutt Not affected Not affected Not affected Vulnerable Not in release
Show less packages

CVE-2018-14350

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/message.c has a stack-based buffer overflow for a FETCH response with a long INTERNALDATE field.

2 affected packages

mutt, neomutt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mutt Fixed Fixed Fixed Fixed Fixed
neomutt Not affected Not affected Not affected Vulnerable Not in release
Show less packages

CVE-2018-14349

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a NO response without a message.

2 affected packages

mutt, neomutt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mutt Fixed Fixed Fixed Fixed Fixed
neomutt Not affected Not affected Not affected Vulnerable Not in release
Show less packages

CVE-2014-9116

Medium priority
Fixed

The write_one_header function in mutt 1.5.23 does not properly handle newline characters at the beginning of a header, which allows remote attackers to cause a denial of service (crash) via a header with an empty body, which...

1 affected package

mutt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mutt
Show less packages

CVE-2014-0467

Medium priority
Fixed

Buffer overflow in copy.c in Mutt before 1.5.23 allows remote attackers to cause a denial of service (crash) via a crafted RFC2047 header line, related to address expansion.

1 affected package

mutt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
mutt
Show less packages