Advisories ยป MGASA-2021-0070

Updated mutt packages fix a security vulnerability

Publication date: 05 Feb 2021
Type: security
Affected Mageia releases : 7
CVE: CVE-2021-3181


It was discovered that Mutt incorrectly handled certain email messages.
An attacker could possibly use this issue to cause a denial of service because
rfc822.c in Mutt through 2.0.4 allows remote attackers to cause a denial of
service (mailbox unavailability) by sending email messages with sequences of
semicolon characters in RFC822 address fields (aka terminators of empty groups).

mutt-1.11.4 has been patched for Mageia 7.