Package: mutt
Version: 1.10.1-2
Severity: serious
Tags: security upstream fixed-upstream
The rfc2231.c file contains:
index = atoi (s);
where the string s is part of a RFC 2231 parameter in a header. For
instance, if in a message (invalid, but which can occur due to spam,
attack, etc.), one has:
Content-Disposition: inline;
filename*17="na";
filename*999999999999999999999999999999="me"
atoi() will be called on the string "999999999999999999999999999999",
which is undefined behavior and may have security implications
depending on the atoi() implementation.
I've just fixed this issue in the following commit:
https://gitlab.com/muttmua/mutt/commit/3b6f6b829718ec8a7cf3eb6997d86e83e6c38567
-- Package-specific info:
Mutt 1.11.4+211 (79563636) vl-117499 (2019-05-13)
Copyright (C) 1996-2016 Michael R. Elkins and others.
Mutt comes with ABSOLUTELY NO WARRANTY; for details type `mutt -vv'.
Mutt is free software, and you are welcome to redistribute it
under certain conditions; type `mutt -vv' for details.
System: Linux 4.19.0-5-amd64 (x86_64)
ncurses: ncurses 6.1.20181013 (compiled with 6.1)
libidn: 1.33 (compiled with 1.33)
Compiler:
Using built-in specs.
COLLECT_GCC=gcc
COLLECT_LTO_WRAPPER=/usr/lib/gcc/x86_64-linux-gnu/8/lto-wrapper
OFFLOAD_TARGET_NAMES=nvptx-none
OFFLOAD_TARGET_DEFAULT=1
Target: x86_64-linux-gnu
Configured with: ../src/configure -v --with-pkgversion='Debian 8.3.0-7'
--with-bugurl=file:///usr/share/doc/gcc-8/README.Bugs
--enable-languages=c,ada,c++,go,brig,d,fortran,objc,obj-c++ --prefix=/usr
--with-gcc-major-version-only --program-suffix=-8
--program-prefix=x86_64-linux-gnu- --enable-shared --enable-linker-build-id
--libexecdir=/usr/lib --without-included-gettext --enable-threads=posix
--libdir=/usr/lib --enable-nls --enable-bootstrap --enable-clocale=gnu
--enable-libstdcxx-debug --enable-libstdcxx-time=yes
--with-default-libstdcxx-abi=new --enable-gnu-unique-object
--disable-vtable-verify --enable-libmpx --enable-plugin --enable-default-pie
--with-system-zlib --with-target-system-zlib --enable-objc-gc=auto
--enable-multiarch --disable-werror --with-arch-32=i686 --with-abi=m64
--with-multilib-list=m32,m64,mx32 --enable-multilib --with-tune=generic
--enable-offload-targets=nvptx-none --without-cuda-driver
--enable-checking=release --build=x86_64-linux-gnu --host=x86_64-linux-gnu
--target=x86_64-linux-gnu
Thread model: posix
gcc version 8.3.0 (Debian 8.3.0-7)
Configure options: '--prefix=/home/vlefevre'
'--exec-prefix=/home/vlefevre/x86_64' '--enable-debug' '--enable-pop'
'--enable-imap' '--with-ssl' '--enable-compressed'
'--with-exec-shell=/home/vlefevre/bin/sh.screen' '--enable-gpgme'
'--with-system-dotlock=/usr/bin/mutt_dotlock' 'CC=gcc' 'CFLAGS=-g -O3
-march=native -fsanitize=undefined -fno-sanitize-recover'
Compilation CFLAGS: -Wall -pedantic -Wno-long-long -g -O3 -march=native
-fsanitize=undefined -fno-sanitize-recover
Compile options:
-DOMAIN
+DEBUG
-HOMESPOOL +USE_SETGID +USE_DOTLOCK +DL_STANDALONE +USE_FCNTL -USE_FLOCK
+USE_POP +USE_IMAP -USE_SMTP
+USE_SSL_OPENSSL -USE_SSL_GNUTLS -USE_SASL -USE_GSS +HAVE_GETADDRINFO
+HAVE_REGCOMP -USE_GNU_REGEX
+HAVE_COLOR +HAVE_START_COLOR +HAVE_TYPEAHEAD +HAVE_BKGDSET
+HAVE_CURS_SET +HAVE_META +HAVE_RESIZETERM +HAVE_FUTIMENS
+CRYPT_BACKEND_CLASSIC_PGP +CRYPT_BACKEND_CLASSIC_SMIME +CRYPT_BACKEND_GPGME
-EXACT_ADDRESS -SUN_ATTACHMENT
+ENABLE_NLS -LOCALES_HACK +HAVE_WC_FUNCS +HAVE_LANGINFO_CODESET
+HAVE_LANGINFO_YESEXPR
+HAVE_ICONV -ICONV_NONTRANS +HAVE_LIBIDN -HAVE_LIBIDN2 +HAVE_GETSID
-USE_HCACHE
-USE_SIDEBAR +USE_COMPRESSED +USE_INOTIFY
ISPELL="/usr/bin/ispell"
SENDMAIL="/usr/sbin/sendmail"
MAILPATH="/var/mail"
PKGDATADIR="/home/vlefevre/share/mutt"
SYSCONFDIR="/home/vlefevre/etc"
EXECSHELL="/home/vlefevre/bin/sh.screen"
-MIXMASTER
To contact the developers, please mail to <mutt-...@mutt.org>.
To report a bug, please contact the Mutt maintainers via gitlab:
https://gitlab.com/muttmua/mutt/issues
patch-20190423.vl.simplesearchkw.1
patch-20190106.pdmef.progress.vl.1
patch-20190423.tamovl.patterns.1
patch-20180503.tamo.iso8601.1
patch-20180503.tamovl.sysdotlock.1
-- System Information:
Debian Release: 10.0
APT prefers unstable-debug
APT policy: (500, 'unstable-debug'), (500, 'stable-updates'), (500,
'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.19.0-5-amd64 (SMP w/12 CPU cores)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE,
TAINT_UNSIGNED_MODULE
Locale: LANG=POSIX, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=POSIX
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages mutt depends on:
ii libassuan0 2.5.2-1
ii libc6 2.28-10
ii libcom-err2 1.45.1-1
ii libgnutls30 3.6.7-2
ii libgpg-error0 1.35-1
ii libgpgme11 1.12.0-6
ii libgssapi-krb5-2 1.17-2
ii libidn11 1.33-2.2
ii libk5crypto3 1.17-2
ii libkrb5-3 1.17-2
ii libncursesw6 6.1+20181013-2
ii libsasl2-2 2.1.27+dfsg-1
ii libtinfo6 6.1+20181013-2
ii libtokyocabinet9 1.4.48-12
Versions of packages mutt recommends:
ii libsasl2-modules 2.1.27+dfsg-1
ii locales 2.28-10
ii mime-support 3.62
Versions of packages mutt suggests:
ii aspell 0.60.7~20110707-6
ii ca-certificates 20190110
ii exim4-daemon-light [mail-transport-agent] 4.92-7
ii gnupg 2.2.13-2
ii ispell 3.4.00-6+b1
pn mixmaster <none>
ii openssl 1.1.1b-2
ii urlview 0.9-21
Versions of packages mutt is related to:
ii mutt 1.10.1-2
-- no debconf information
