AZL-36980

See a problem?
Import Source
https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-36980.json
JSON Data
https://api.osv.dev/v1/vulns/AZL-36980
Upstream
  • CVE-1999-0475
Published
1999-04-05T04:00:00Z
Modified
2026-04-21T04:25:28.527702Z
Summary
CVE-1999-0475 affecting package procmail 3.24-8
Details

A race condition in how procmail handles .procmailrc files allows a local user to read arbitrary files available to the user who is running procmail.

References

Affected packages

Azure Linux:3 / procmail

Package

Name
procmail
Purl
pkg:rpm/azure-linux/procmail

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
3.24-8

Database specific

source 
"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-36980.json"