UbuntuUpdates.org

Package "mutt"

Name: mutt

Description:

text-based mailreader supporting MIME, GPG, PGP and threading
Latest version: 2.1.4-1ubuntu1.2
Release: jammy (22.04)
Level: security
Repository: main
Homepage: http://www.mutt.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "mutt"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "mutt" in Jammy

Repository Area Version
base main 2.1.4-1build1
updates main 2.1.4-1ubuntu1.2

Changelog

Version: 2.1.4-1ubuntu1.2 2023-09-14 21:06:50 UTC

  mutt (2.1.4-1ubuntu1.2) jammy-security; urgency=medium

  * SECURITY UPDATE: null pointer dereference
    - d/p/upstream/Fix-rfc2047-base64-decoding-to-abort-on-illegal-char.patch: Fix
      rfc2047 base64 decoding to abort on illegal characters.
    - d/p/upstream/Check-for-NULL-userhdrs.patch: Check for NULL userhdrs.
    - d/p/upstream/Fix-write_one_header-illegal-header-check.patch: Fix
      write_one_header() illegal header check.
    - CVE-2023-4874
    - CVE-2023-4875

 -- Fabian Toepfer <email address hidden> Thu, 14 Sep 2023 16:53:56 +0200
Source diff to previous version
CVE-2023-4874 Null pointer dereference when viewing a specially crafted email in Mutt >1.5.2 <2.2.12
CVE-2023-4875 Null pointer dereference when composing from a specially crafted draft message in Mutt >1.5.2 <2.2.12

Version: 2.1.4-1ubuntu1.1 2022-04-28 11:06:20 UTC

  mutt (2.1.4-1ubuntu1.1) jammy-security; urgency=medium

  * SECURITY UPDATE: Buffer overflow
    - debian/patches/CVE-2022-1328.patch: Fix uudecode in handler.c.
    - CVE-2022-1328

 -- Leonidas Da Silva Barbosa <email address hidden> Tue, 19 Apr 2022 10:44:45 -0300
CVE-2022-1328 Buffer Overflow in uudecoder in Mutt affecting all versions starting from 0.94.13 before 2.2.3 allows read past end of input line


About   -   Send Feedback to @ubuntu_updates