[Buildroot] [PATCH] package/mutt: add security fixed from Ubuntu for CVE-2021-3181
Peter Korsgaard
peter at korsgaard.com
Thu Jan 28 20:46:52 UTC 2021
>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:
Ups, s/fixed/fixes/ in the subject.
> Fixes the following security issue:
> - CVE-2021-3181: rfc822.c in Mutt through 2.0.4 allows remote attackers to
> cause a denial of service (mailbox unavailability) by sending email
> messages with sequences of semicolon characters in RFC822 address fields
> (aka terminators of empty groups). A small email message from the
> attacker can cause large memory consumption, and the victim may then be
> unable to see email messages from other persons.
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list