Описание
Amavis before 2.12.3 and 2.13.x before 2.13.1, in part because of its use of MIME-tools, has an Interpretation Conflict (relative to some mail user agents) when there are multiple boundary parameters in a MIME email message. Consequently, there can be an incorrect check for banned files or malware.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1:2.13.0-6ubuntu1 |
| esm-infra-legacy/trusty | needs-triage | |
| esm-infra/bionic | needs-triage | |
| esm-infra/focal | not-affected | 1:2.11.0-6.1ubuntu1.1 |
| esm-infra/xenial | needs-triage | |
| focal | released | 1:2.11.0-6.1ubuntu1.1 |
| jammy | released | 1:2.12.2-1ubuntu1.1 |
| mantic | released | 1:2.13.0-3ubuntu1.1 |
| noble | released | 1:2.13.0-3ubuntu2 |
| oracular | released | 1:2.13.0-6ubuntu1 |
Показывать по
Ссылки на источники
EPSS
7.4 High
CVSS3
Связанные уязвимости
Amavis before 2.12.3 and 2.13.x before 2.13.1, in part because of its use of MIME-tools, has an Interpretation Conflict (relative to some mail user agents) when there are multiple boundary parameters in a MIME email message. Consequently, there can be an incorrect check for banned files or malware.
Amavis before 2.12.3 and 2.13.x before 2.13.1, in part because of its ...
Amavis before 2.12.3 and 2.13.x before 2.13.1, in part because of its use of MIME-tools, has an Interpretation Conflict (relative to some mail user agents) when there are multiple boundary parameters in a MIME email message. Consequently, there can be an incorrect check for banned files or malware.
Уязвимость компонента MIME-tools контент-фильтра электронной почты Amavis, связанная с неправильным контролем доступа, позволяющая нарушителю повысить свои привилегии
EPSS
7.4 High
CVSS3