USN-3719-3
- Source
- https://ubuntu.com/security/notices/USN-3719-3
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3719-3.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-3719-3
- Related
- Published
- 2018-09-28T03:58:55.542575Z
- Modified
- 2018-09-28T03:58:55.542575Z
- Summary
- mutt vulnerabilities
- Details
-
USN-3719-1 fixed vulnerabilities in Mutt. Unfortunately, the fixes were not correctly applied to the packaging for Mutt in Ubuntu 16.04 LTS. This update corrects the oversight.
We apologize for the inconvenience.
Original advisory details:
It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this to execute arbitrary code. (CVE-2018-14350, CVE-2018-14352, CVE-2018-14354, CVE-2018-14359, CVE-2018-14358, CVE-2018-14353 ,CVE-2018-14357)
It was discovered that Mutt incorrectly handled certain inputs. An attacker could possibly use this to access or expose sensitive information. (CVE-2018-14355, CVE-2018-14356, CVE-2018-14351, CVE-2018-14362, CVE-2018-14349)
- References
-
- https://ubuntu.com/security/notices/USN-3719-3
- https://ubuntu.com/security/CVE-2018-14349
- https://ubuntu.com/security/CVE-2018-14350
- https://ubuntu.com/security/CVE-2018-14351
- https://ubuntu.com/security/CVE-2018-14352
- https://ubuntu.com/security/CVE-2018-14353
- https://ubuntu.com/security/CVE-2018-14354
- https://ubuntu.com/security/CVE-2018-14355
- https://ubuntu.com/security/CVE-2018-14356
- https://ubuntu.com/security/CVE-2018-14357
- https://ubuntu.com/security/CVE-2018-14358
- https://ubuntu.com/security/CVE-2018-14359
- https://ubuntu.com/security/CVE-2018-14362
- https://launchpad.net/bugs/1794278
Affected packages
Ubuntu:16.04:LTS / mutt
Package
- Name
- mutt
- Purl
- pkg:deb/ubuntu/mutt?arch=src?distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.5.24-1ubuntu0.2
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "1.5.24-1ubuntu0.2",
"binary_name": "mutt"
},
{
"binary_version": "1.5.24-1ubuntu0.2",
"binary_name": "mutt-dbg"
},
{
"binary_version": "1.5.24-1ubuntu0.2",
"binary_name": "mutt-dbgsym"
},
{
"binary_version": "1.5.24-1ubuntu0.2",
"binary_name": "mutt-patched"
},
{
"binary_version": "1.5.24-1ubuntu0.2",
"binary_name": "mutt-patched-dbgsym"
}
]
}