Bugzilla – Bug 1185705
VUL-0: CVE-2021-32055: mutt,neomutt: Out of bounds read in IMAP parser
Last modified: 2022-06-21 16:16:37 UTC
rh#1957451 Mutt 1.11.0 through 2.0.x before 2.0.7 (and NeoMutt 2019-10-25 through 2021-05-04) has a $imap_qresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imap_qresync setting for QRESYNC is not enabled by default. References: https://gitlab.com/muttmua/mutt/-/commit/7c4779ac24d2fb68a2a47b58c7904118f40965d5 http://lists.mutt.org/pipermail/mutt-announce/Week-of-Mon-20210503/000036.html https://github.com/neomutt/neomutt/commit/fa1db5785e5cfd9d3cd27b7571b9fe268d2ec2dc References: https://bugzilla.redhat.com/show_bug.cgi?id=1957451 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-32055 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32055 https://github.com/neomutt/neomutt/commit/fa1db5785e5cfd9d3cd27b7571b9fe268d2ec2dc https://gitlab.com/muttmua/mutt/-/commit/7c4779ac24d2fb68a2a47b58c7904118f40965d5 http://lists.mutt.org/pipermail/mutt-announce/Week-of-Mon-20210503/000036.html
SLE-15 does only have mutt-1.10.1 SLE-12 does only have mutt-1.10.1 Hence only Factory/Tumbleweed is affected and this should be solved with update to mutt 2.0.7
(In reply to Dr. Werner Fink from comment #1) > SLE-15 does only have mutt-1.10.1 > SLE-12 does only have mutt-1.10.1 > Hence only Factory/Tumbleweed is affected and this should be solved with > update to mutt 2.0.7 Patch does not find the function not fitting code, that it seems really apply only for mutt-1.11.0 and above
This is an autogenerated message for OBS integration: This bug (1185705) was mentioned in https://build.opensuse.org/request/show/891208 Factory / mutt
Next is neomutt
(In reply to Dr. Werner Fink from comment #2) > (In reply to Dr. Werner Fink from comment #1) > > SLE-15 does only have mutt-1.10.1 > > SLE-12 does only have mutt-1.10.1 > > Hence only Factory/Tumbleweed is affected and this should be solved with > > update to mutt 2.0.7 > > Patch does not find the function not fitting code, that it seems really > apply only for mutt-1.11.0 and above sorry for the late reply. I will update my incorrect tracking and close.
(In reply to Dr. Werner Fink from comment #4) > Next is neomutt seems to be missing for neomutt, will leave the bug open for now.
This is an autogenerated message for OBS integration: This bug (1185705) was mentioned in https://build.opensuse.org/request/show/982645 Backports:SLE-15-SP4 / neomutt
openSUSE-SU-2022:10020-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1184787,1185705 CVE References: CVE-2021-32055,CVE-2022-1328 JIRA References: Sources used: openSUSE Backports SLE-15-SP4 (src): neomutt-20220429-bp154.2.3.1