A heap-based buffer overflow in Mutt might allow remote attackers to cause a Denial of Service condition.
|Package||mail-client/mutt on all architectures|
|Affected versions||< 1.5.23-r5|
|Unaffected versions||>= 1.5.23-r5|
Mutt is a small but very powerful text-based mail client.
A heap-based buffer overflow was discovered in Mutt’s mutt_substrdup function.
A remote attacker could cause a Denial of Service condition.
There is no known workaround at this time.
All Mutt users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=mail-client/mutt-1.5.23-r5"
January 01, 2017
January 01, 2017: 1