CVE-2020-16118

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2020-16118
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-16118.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-16118
Downstream
Related
Published
2020-07-29T18:15:15Z
Modified
2025-10-21T05:41:55.214062Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In GNOME Balsa before 2.6.0, a malicious server operator or man in the middle can trigger a NULL pointer dereference and client crash by sending a PREAUTH response to imapmboxconnect in libbalsa/imap/imap-handle.c.

References

Affected packages

Git / gitlab.gnome.org/GNOME/balsa

Affected ranges

Type
GIT
Repo
https://gitlab.gnome.org/GNOME/balsa
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
4e245d758e1c826a01080d40c22ca8706f0339e5

Affected versions

2.*

2.4.90
2.4.91
2.5.0
2.5.0a
2.5.1
2.5.2
2.5.3a
2.5.4
2.5.5
2.5.6
2.5.7a
2.5.8
2.5.9

Other

BALSA_1_0_0
BALSA_1_1_0
BALSA_1_1_1
BALSA_1_1_2
BALSA_1_1_4
BALSA_1_1_7
BALSA_1_2_0
BALSA_1_2_2
BALSA_1_2_pre2
BALSA_1_3_0
BALSA_1_3_3
BALSA_1_3_4
BALSA_1_3_5
BALSA_1_3_6
BALSA_1_4_0
BALSA_1_4_1
BALSA_2_0_13
BALSA_2_0_8
BALSA_2_0_9
BALSA_2_1_1
BALSA_2_1_2
BALSA_2_1_3
BALSA_2_1_91
BALSA_2_2_1
BALSA_2_2_2
BALSA_2_2_4
BALSA_2_2_5
BALSA_2_2_6
BALSA_2_3_0
BALSA_2_3_1
BALSA_2_3_10
BALSA_2_3_12
BALSA_2_3_13
BALSA_2_3_15
BALSA_2_3_19
BALSA_2_3_2
BALSA_2_3_20
BALSA_2_3_24
BALSA_2_3_26
BALSA_2_3_3
BALSA_2_3_4
BALSA_2_3_5
BALSA_2_3_7
BALSA_2_3_8
GNOME0
GNOME_MEDIA_1_2_2
GNOME_PRINT_0_24
WITHXMHTML
balsa-0-8
balsa-0-9-5
balsa-0_6_0
before-new-toolbars
dev_0_9_1
initial-BALSA-CONFIG
release_tag

Database specific

vanir_signatures

[
    {
        "source": "https://gitlab.gnome.org/GNOME/balsa@4e245d758e1c826a01080d40c22ca8706f0339e5",
        "target": {
            "function": "ir_preauth",
            "file": "libbalsa/imap/imap-handle.c"
        },
        "id": "CVE-2020-16118-1c938bdf",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Function",
        "digest": {
            "function_hash": "31836230078113631678238411961133440548",
            "length": 145.0
        }
    },
    {
        "source": "https://gitlab.gnome.org/GNOME/balsa@4e245d758e1c826a01080d40c22ca8706f0339e5",
        "target": {
            "function": "imap_mbox_connect",
            "file": "libbalsa/imap/imap-handle.c"
        },
        "id": "CVE-2020-16118-4f5bbbed",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Function",
        "digest": {
            "function_hash": "293968677701453279845062206111635714870",
            "length": 1964.0
        }
    },
    {
        "source": "https://gitlab.gnome.org/GNOME/balsa@4e245d758e1c826a01080d40c22ca8706f0339e5",
        "target": {
            "file": "libbalsa/imap/imap-handle.c"
        },
        "id": "CVE-2020-16118-c46feb0d",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "1643226158156333488970853661134900088",
                "228218704177446988173638814297809441413",
                "236248795415852436039219694572462381721",
                "18478388076030129196173864960940574670",
                "23703402067512023341633421662796275974",
                "118947903512508494928110480117462030534",
                "98931956777700046772554200538121766800",
                "238454973838811676910368375657663991330",
                "263680398036305298661078886103628345842",
                "201554279598316517544620395921944958198"
            ],
            "threshold": 0.9
        }
    }
]