CVE-2018-14352

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2018-14352
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-14352.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-14352
Downstream
Related
Published
2018-07-17T17:29:00Z
Modified
2025-10-14T16:23:47.724732Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imapquotestring in imap/util.c does not leave room for quote characters, leading to a stack-based buffer overflow.

References

Affected packages

Git / github.com/muttmua/mutt

Affected ranges

Type
GIT
Repo
https://github.com/muttmua/mutt
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
ed9d7727dc705754871e31cb41420f0ea956495b
Type
GIT
Repo
https://github.com/neomutt/neomutt
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
e27b65b3bf8defa34db58919496056caf3850cd4
Type
GIT
Repo
https://gitlab.com/muttmua/mutt
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
e0131852c6059107939893016c8ff56b6e42865d

Affected versions

Other

mutt-0-92-10i
mutt-0-92-11i
mutt-0-92-9i
mutt-0-93-unstable
mutt-0-94-10i-rel
mutt-0-94-13-rel
mutt-0-94-14-rel
mutt-0-94-15-rel
mutt-0-94-16i-rel
mutt-0-94-17i-rel
mutt-0-94-18-rel
mutt-0-94-5i-rel
mutt-0-94-6i-rel
mutt-0-94-7i-rel
mutt-0-94-8i-rel
mutt-0-94-9i-p1
mutt-0-94-9i-rel
mutt-0-95-rel
mutt-0-96-1-rel
mutt-0-96-2-slightly-post-release
mutt-0-96-3-rel
mutt-0-96-4-rel
mutt-0-96-5-rel
mutt-0-96-6-rel
mutt-0-96-7-rel
mutt-0-96-8-rel
mutt-0-96-rel
mutt-1-1-1-1-rel
mutt-1-1-1-2-rel
mutt-1-1-1-rel
mutt-1-1-10-rel
mutt-1-1-11-rel
mutt-1-1-12-rel
mutt-1-1-13-rel
mutt-1-1-14-rel
mutt-1-1-2-rel
mutt-1-1-3-rel
mutt-1-1-4-rel
mutt-1-1-5-rel
mutt-1-1-6-rel
mutt-1-1-7-rel
mutt-1-1-8-rel
mutt-1-1-9-rel
mutt-1-1-rel
mutt-1-10-rel
mutt-1-3-1-rel
mutt-1-3-10-rel
mutt-1-3-11-rel
mutt-1-3-12-rel
mutt-1-3-13-rel
mutt-1-3-14-rel
mutt-1-3-15-rel
mutt-1-3-16-rel
mutt-1-3-17-rel
mutt-1-3-18-rel
mutt-1-3-19-rel
mutt-1-3-2-rel
mutt-1-3-20-rel
mutt-1-3-21-rel
mutt-1-3-22-1-rel
mutt-1-3-22-rel
mutt-1-3-23-1-rel
mutt-1-3-23-2-rel
mutt-1-3-23-rel
mutt-1-3-24-rel
mutt-1-3-25-rel
mutt-1-3-26-rel
mutt-1-3-27-rel
mutt-1-3-3-rel
mutt-1-3-4-rel
mutt-1-3-5-rel
mutt-1-3-6-rel
mutt-1-3-7-rel
mutt-1-3-8-rel
mutt-1-3-9-rel
mutt-1-3-rel
mutt-1-5-1-rel
mutt-1-5-10-rel
mutt-1-5-11-rel
mutt-1-5-12-rel
mutt-1-5-13-rel
mutt-1-5-14-rel
mutt-1-5-15-rel
mutt-1-5-16-rel
mutt-1-5-17-rel
mutt-1-5-18-rel
mutt-1-5-19-rel
mutt-1-5-2-rel
mutt-1-5-20-rel
mutt-1-5-21-rel
mutt-1-5-22-rel
mutt-1-5-23-rel
mutt-1-5-24-rel
mutt-1-5-3-rel
mutt-1-5-4-rel
mutt-1-5-5-1-rel
mutt-1-5-5-rel
mutt-1-5-6-rel
mutt-1-5-7-rel
mutt-1-5-8-rel
mutt-1-5-9-rel
mutt-1-6-1-rel
mutt-1-6-2-rel
mutt-1-6-rel
mutt-1-7-1-rel
mutt-1-7-2-rel
mutt-1-7-rel
mutt-1-8-1-rel
mutt-1-8-2-rel
mutt-1-8-3-rel
mutt-1-8-rel
mutt-1-9-1-rel
mutt-1-9-2-rel
mutt-1-9-3-rel
mutt-1-9-4-rel
mutt-1-9-5-rel
mutt-1-9-rel
neomutt-20160822
neomutt-20160827
neomutt-20160910
neomutt-20160916
neomutt-20161002
neomutt-20161003
neomutt-20161014
neomutt-20161028
neomutt-20161104
neomutt-20161126
neomutt-20170113
neomutt-20170128
neomutt-20170206
neomutt-20170225
neomutt-20170306
neomutt-20170414
neomutt-20170421
neomutt-20170428
neomutt-20170526
neomutt-20170602
neomutt-20170609
neomutt-20170707
neomutt-20170714
neomutt-20170907
neomutt-20170912
neomutt-20171006
neomutt-20171013
neomutt-20171027
neomutt-20171208
neomutt-20171215
neomutt-20180223
neomutt-20180323
neomutt-20180512
neomutt-20180622
post-type-punning-patch
pre-type-punning-patch

Database specific 

{
    "vanir_signatures": [
        {
            "deprecated": false,
            "signature_type": "Line",
            "target": {
                "file": "imap/util.c"
            },
            "id": "CVE-2018-14352-45ef1656",
            "digest": {
                "line_hashes": [
                    "208197662098857636302867262058187202232",
                    "41086875850993059863915264337893440600",
                    "267919281465194934696159675631347027828",
                    "82663813847307772799785084971472340363"
                ],
                "threshold": 0.9
            },
            "signature_version": "v1",
            "source": "https://github.com/neomutt/neomutt/commit/e27b65b3bf8defa34db58919496056caf3850cd4"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "imap/util.c",
                "function": "imap_quote_string"
            },
            "id": "CVE-2018-14352-bd07d7cb",
            "digest": {
                "length": 440.0,
                "function_hash": "31434170385445925645895292899185855968"
            },
            "signature_version": "v1",
            "source": "https://github.com/neomutt/neomutt/commit/e27b65b3bf8defa34db58919496056caf3850cd4"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "imap/util.c",
                "function": "_imap_quote_string"
            },
            "id": "CVE-2018-14352-d812d2df",
            "digest": {
                "length": 410.0,
                "function_hash": "40666457325933368291575099386837457356"
            },
            "signature_version": "v1",
            "source": "https://gitlab.com/muttmua/mutt@e0131852c6059107939893016c8ff56b6e42865d"
        },
        {
            "deprecated": false,
            "signature_type": "Line",
            "target": {
                "file": "imap/util.c"
            },
            "id": "CVE-2018-14352-e50ea7c2",
            "digest": {
                "line_hashes": [
                    "286825986659692381523275984697414304158",
                    "116272058307513292299683231627710474868",
                    "51651615816479745004171875861077687511",
                    "29959305164162731185766895165259995508",
                    "328072855443475217845821425628390260381",
                    "267919281465194934696159675631347027828",
                    "302858303013732373814235239874974723469",
                    "1059981929047943784357356626914626281",
                    "187464042198075305097852041642751147938",
                    "7002288292590039929813425765991714621",
                    "179605271331145386996960733985749176276",
                    "162105781547520036600742144204354819781",
                    "8696559302285177799845044499702199818",
                    "153173161433175437829475666550604780854"
                ],
                "threshold": 0.9
            },
            "signature_version": "v1",
            "source": "https://gitlab.com/muttmua/mutt@e0131852c6059107939893016c8ff56b6e42865d"
        }
    ]
}