CVE-2023-4874

Опубликовано: 09 сент. 2023

Источник: redhat

CVSS3: 5.7

Описание

Null pointer dereference when viewing a specially crafted email in Mutt >1.5.2 <2.2.12

A null pointer dereference flaw was found in mutt when handling specially crafted characters. This issue could allow an attacker to send a specially crafted email that causes the email client to crash when reading or processing the email.

Отчет

This is a local client crash caused by a specially crafted email. No code execution is expected. This flaw has been rated as having moderate security impact.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=2238240mutt: null pointer dereference

5.7 Medium

CVSS3

Связанные уязвимости

CVE-2023-4874

CVSS3: 4.3

ubuntu

около 2 лет назад

Null pointer dereference when viewing a specially crafted email in Mutt >1.5.2 <2.2.12

CVE-2023-4874

CVSS3: 4.3

nvd

около 2 лет назад

Null pointer dereference when viewing a specially crafted email in Mutt >1.5.2 <2.2.12

CVE-2023-4874

CVSS3: 6.5

msrc

около 2 лет назад

Описание отсутствует

CVE-2023-4874

CVSS3: 4.3

debian

около 2 лет назад

Null pointer dereference when viewing a specially crafted email in Mut ...

GHSA-q9v3-53xg-6f9p

CVSS3: 4.3

github

около 2 лет назад

Null pointer dereference when viewing a specially crafted email in Mutt >1.5.2 <2.2.12

5.7 Medium

CVSS3