mutt-1.5.21-29.el7

エラータID: AXSA:2020-4539:01

Release date: 
Thursday, April 2, 2020 - 04:42
Subject: 
mutt-1.5.21-29.el7
Affected Channels: 
Asianux Server 7 for x86_64
Severity: 
Moderate
Description: 

Mutt is a low resource, highly configurable, text-based MIME e-mail client. Mutt supports most e-mail storing formats, such as mbox and Maildir, as well as most protocols, including POP3 and IMAP.

Security Fix(es):

* mutt: IMAP header caching path traversal vulnerability (CVE-2018-14355)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Asianux Server 7.8 Release Notes linked from the References section.

CVE-2018-14355
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/util.c mishandles ".." directory traversal in a mailbox name.

Solution: 

Update packages.

CVEs: 
CVE-2018-14355
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/util.c mishandles ".." directory traversal in a mailbox name.
Additional Info: 

N/A

Download: 

SRPMS
  1. mutt-1.5.21-29.el7.src.rpm
    MD5: dc3dec5ff63c8e62764dd1a9a44b7e42
    SHA-256: cda23bf963cbc0ed21e8e5c034c21e71ea25ed692c7eac07267cd8ce9750e56b
    Size: 3.59 MB

Asianux Server 7 for x86_64
  1. mutt-1.5.21-29.el7.x86_64.rpm
    MD5: 10b7bea22bf0cb1b2c2df212a9e14f6b
    SHA-256: 6f30ce8160d9739a3865cd6904602d51b63410124d793665afb07cf742970d59
    Size: 1.38 MB