NeoMutt 20191025

CPE Details

NeoMutt 20191025
neomutt
neomutt
20191025
2021-05-11
15h19 +00:00
2021-07-01
11h17 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:neomutt:neomutt:20191025:*:*:*:*:*:*:*

Informations

Vendor

neomutt

Product

neomutt

Version

20191025

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-32055 2021-05-05 13h06 +00:00 Mutt 1.11.0 through 2.0.x before 2.0.7 (and NeoMutt 2019-10-25 through 2021-05-04) has a $imap_qresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imap_qresync setting for QRESYNC is not enabled by default.
9.1
Critique
CVE-2020-14954 2020-06-21 14h55 +00:00 Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data (e.g., from a man-in-the-middle attacker) and evaluates it in a TLS context, aka "response injection."
5.9
Moyen