Bug 1192985 - (CVE-2021-44143) VUL-0: CVE-2021-44143: isync: heap overflow in in mbsync while dealing with a mail message without header
(CVE-2021-44143)
VUL-0: CVE-2021-44143: isync: heap overflow in in mbsync while dealing with a...
Status: REOPENED
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 15.3
Other Other
: P3 - Medium : Normal (vote)
: ---
Assigned To: Tomas Cech
Security Team bot
https://smash.suse.de/issue/315529/
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2021-11-23 10:32 UTC by Thomas Leroy
Modified: 2022-01-05 09:22 UTC (History)
0 users

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Thomas Leroy 2021-11-23 10:32:58 UTC
CVE-2021-44143

A flaw was found in mbsync in isync 1.4.0 through 1.4.3. Due to an unchecked
condition, a malicious or compromised IMAP server could use a crafted mail
message that lacks headers (i.e., one that starts with an empty line) to provoke
a heap overflow, which could conceivably be exploited for remote code execution.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44143
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=999804
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44143
https://sourceforge.net/p/isync/isync/commit_browser
https://sourceforge.net/p/isync/isync/ref/master/tags/
Comment 1 Thomas Leroy 2021-11-23 10:33:37 UTC
There is still no fix upstream.
Comment 2 Thomas Leroy 2021-11-23 11:07:39 UTC
Only openSUSE:Factory should be affected.
Comment 3 Tomas Cech 2021-11-30 06:18:26 UTC
No fix upstream or in other distributions yet...
Comment 4 Dirk Mueller 2022-01-05 09:21:22 UTC
1.4.4 fixes this, submitted to tumbleweed.
Comment 5 Dirk Mueller 2022-01-05 09:22:16 UTC
actually affects older distros, reopening.