Описание
Buffer Overflow in uudecoder in Mutt affecting all versions starting from 0.94.13 before 2.2.3 allows read past end of input line
A flaw was found in mutt. When reading unencoded messages, mutt uses the line length from the untrusted input without any validation. This flaw allows an attacker to craft a malicious message, which leads to an out-of-bounds read, causing data leaks that include fragments of other unrelated messages.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | mutt | Out of support scope | ||
| Red Hat Enterprise Linux 7 | mutt | Out of support scope | ||
| Red Hat Enterprise Linux 8 | mutt | Fixed | RHSA-2022:7640 | 08.11.2022 |
| Red Hat Enterprise Linux 9 | mutt | Fixed | RHSA-2022:8219 | 15.11.2022 |
Показывать по
Дополнительная информация
Статус:
6.5 Medium
CVSS3
Связанные уязвимости
Buffer Overflow in uudecoder in Mutt affecting all versions starting from 0.94.13 before 2.2.3 allows read past end of input line
Buffer Overflow in uudecoder in Mutt affecting all versions starting from 0.94.13 before 2.2.3 allows read past end of input line
Buffer Overflow in uudecoder in Mutt affecting all versions starting f ...
6.5 Medium
CVSS3