RedHat Update For Mutt RHSA-2014:0304-01 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Mutt is a text-mode mail user agent. A heap-based buffer overflow flaw was found in the way mutt processed certain email headers. A remote attacker could use this flaw to send an email with specially crafted headers that, when processed, could cause mutt to crash or, potentially, execute arbitrary code with the permissions of the user running mutt. (CVE-2014-0467) All mutt users are advised to upgrade to this updated package, which contains a backported patch to correct this issue. All running instances of mutt must be restarted for this update to take effect.

Affected

mutt on Red Hat Enterprise Linux Desktop (v. 6), Red Hat Enterprise Linux Server (v. 6), Red Hat Enterprise Linux Workstation (v. 6)

References

https://www.redhat.com/archives/rhsa-announce/2014-March/msg00023.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-0467
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

RedHat Security Advisory RHSA-2009:0451
RedHat Security Advisory RHSA-2009:0476
RedHat Security Advisory RHSA-2009:1572
RedHat Security Advisory RHSA-2009:1076
RedHat Security Advisory RHSA-2009:0361

RedHat Update for mutt RHSA-2014:0304-01

Take action and discover your vulnerabilities