mutt-2.0.7-3.el8

エラータID: AXSA:2024-8327:02

Release date: 
Monday, June 17, 2024 - 21:19
Subject: 
mutt-2.0.7-3.el8
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

Mutt is a low resource, highly configurable, text-based MIME e-mail client. Mutt supports most e-mail storing formats, such as mbox and Maildir, as well as most protocols, including POP3 and IMAP.

Security Fix(es):

* mutt: null pointer dereference (CVE-2023-4874)
* mutt: null pointer dereference (CVE-2023-4875)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Asianux Server 8.10 Release Notes linked from the References section.

CVE-2023-4874
Null pointer dereference when viewing a specially crafted email in Mutt >1.5.2 <2.2.12
CVE-2023-4875
Null pointer dereference when composing from a specially crafted draft message in Mutt >1.5.2 <2.2.12

Solution: 

Update packages.

CVEs: 
CVE-2023-4874
Null pointer dereference when viewing a specially crafted email in Mutt >1.5.2 <2.2.12
CVE-2023-4875
Null pointer dereference when composing from a specially crafted draft message in Mutt >1.5.2 <2.2.12
Additional Info: 

N/A

Download: 

SRPMS
  1. mutt-2.0.7-3.el8.src.rpm
    MD5: e5745053635d0334911560604971537a
    SHA-256: 7057be91bb3dcbc8993573f38731ed51d6002c84378b9609230a84ed844056b7
    Size: 5.10 MB

Asianux Server 8 for x86_64
  1. mutt-2.0.7-3.el8.x86_64.rpm
    MD5: 41328ece721bd540f2f31817f85b34f3
    SHA-256: c6b8bd604983c1be885f1dac3d5eefd533922b7db9aff166166e0a3534a3d19b
    Size: 1.92 MB