Advisories » MGASA-2024-0175

Updated mutt packages fix security vulnerabilities

Publication date: 13 May 2024
Modification date: 13 May 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2023-4874 , CVE-2023-4875

Description

Null pointer dereference when viewing a specially crafted email in Mutt
>1.5.2 <2.2.12. (CVE-2023-4874)
Null pointer dereference when composing from a specially crafted draft
message in Mutt >1.5.2 <2.2.12. (CVE-2023-4875)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=33161
• https://lwn.net/Articles/971683/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4874
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4875

SRPMS

9/core

• mutt-2.2.10-1.1.mga9