| Revision Date: | 2004-02-11 | Version: | 502 |
| Title: | RHSA-2004:050: mutt security update (Important) |
| Description: | Mutt is a text-mode mail user agent.
A bug was found in the index menu code in versions of mutt. A remote attacker could send a carefully crafted mail message that can cause mutt to segfault and possibly execute arbitrary code as the victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0078 to this issue.
It is recommended that all mutt users upgrade to these updated packages, which contain a backported security patch and are not vulnerable to this issue.
Red Hat would like to thank Niels Heinen for reporting this issue.
Note: mutt-1.2.5.1 in Red Hat Enterprise Linux 2.1 is not vulnerable to this issue.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | CVE-2004-0078
RHSA-2004:050-01
|
| Platform(s): | Red Hat Enterprise Linux 3
| Product(s): | |
| Definition Synopsis |
| Red Hat Enterprise Linux 3 is installed AND mutt is earlier than 5:1.4.1-3.4
AND mutt is signed with Red Hat master key
|