AZL-6802

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-6802.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-6802

Upstream

CVE-2014-3618

Published

2014-09-08T14:55:02Z

Modified

2026-04-21T04:38:19.084205Z

Summary

CVE-2014-3618 affecting package procmail for versions less than 3.22-53

Details

Heap-based buffer overflow in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted email header, related to "unbalanced quotes."

References

https://nvd.nist.gov/vuln/detail/CVE-2014-3618

Affected packages

Azure Linux:2 / procmail

Package

Name: procmail
Purl: pkg:rpm/azure-linux/procmail

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.22-53

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-6802.json"