CVE search results

11 – 20 of 41 results

Detailed view

Sort by:

CVE-2020-14154

Low priority

Fixed

Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate.

1 affected packages

mutt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mutt	—	—	Fixed	Fixed	Fixed

CVE-2020-14093

Medium priority

Fixed

Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response.

1 affected packages

mutt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mutt	—	—	Fixed	Fixed	Fixed

CVE-2005-2351

Negligible priority

Ignored

Mutt before 1.5.20 patch 7 allows an attacker to cause a denial of service via a series of requests to mutt temporary files.

1 affected packages

mutt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mutt	—	—	—	—	—

CVE-2018-14363

Medium priority

Vulnerable

An issue was discovered in NeoMutt before 2018-07-16. newsrc.c does not properly restrict '/' characters that may have unsafe interaction with cache pathnames.

1 affected packages

neomutt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
neomutt	Not affected	Not affected	Not affected	Vulnerable	Not in release

CVE-2018-14361

Medium priority

Vulnerable

An issue was discovered in NeoMutt before 2018-07-16. nntp.c proceeds even if memory allocation fails for messages data.

1 affected packages

neomutt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
neomutt	Not affected	Not affected	Not affected	Vulnerable	Not in release

CVE-2018-14360

Medium priority

Vulnerable

An issue was discovered in NeoMutt before 2018-07-16. nntp_add_group in newsrc.c has a stack-based buffer overflow because of incorrect sscanf usage.

1 affected packages

neomutt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
neomutt	Not affected	Not affected	Not affected	Vulnerable	Not in release

CVE-2018-14362

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c does not forbid characters that may have unsafe interaction with message-cache pathnames, as demonstrated by a '/' character.

2 affected packages

mutt, neomutt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mutt	Fixed	Fixed	Fixed	Fixed	Fixed
neomutt	Not affected	Not affected	Not affected	Vulnerable	Not in release

CVE-2018-14359

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They have a buffer overflow via base64 data.

2 affected packages

mutt, neomutt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mutt	Fixed	Fixed	Fixed	Fixed	Fixed
neomutt	Not affected	Not affected	Not affected	Vulnerable	Not in release

CVE-2018-14358

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/message.c has a stack-based buffer overflow for a FETCH response with a long RFC822.SIZE field.

2 affected packages

mutt, neomutt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mutt	Fixed	Fixed	Fixed	Fixed	Fixed
neomutt	Not affected	Not affected	Not affected	Vulnerable	Not in release

CVE-2018-14357

Medium priority

Some fixes available 16 of 19

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with an automatic subscription.

2 affected packages

mutt, neomutt

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mutt	Fixed	Fixed	Fixed	Fixed	Fixed
neomutt	Not affected	Not affected	Not affected	Vulnerable	Not in release

Export to JSON

Results by page:

Search CVE reports