Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2007-2683 (GCVE-0-2007-2683)
Vulnerability from cvelistv5
Published
2007-05-15 21:00
Modified
2024-08-07 13:49
Severity ?
EPSS score ?
Summary
Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via "&" characters in the GECOS field, which triggers the overflow during alias expansion.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-07T13:49:57.139Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "25529", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/25529", }, { name: "1018066", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id?1018066", }, { name: "2007-0024", tags: [ "vendor-advisory", "x_refsource_TRUSTIX", "x_transferred", ], url: "http://www.trustix.org/errata/2007/0024/", }, { name: "26415", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/26415", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "http://dev.mutt.org/trac/ticket/2885", }, { name: "25408", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/25408", }, { name: "34973", tags: [ "vdb-entry", "x_refsource_OSVDB", "x_transferred", ], url: "http://osvdb.org/34973", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890", }, { name: "oval:org.mitre.oval:def:10543", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543", }, { name: "25546", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/25546", }, { name: "25515", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/25515", }, { name: "mutt-gecos-bo(34441)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441", }, { name: "MDKSA-2007:113", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113", }, { name: "RHSA-2007:0386", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2007-0386.html", }, { name: "24192", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/24192", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://issues.rpath.com/browse/RPL-1391", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2007-05-11T00:00:00", descriptions: [ { lang: "en", value: "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"&\" characters in the GECOS field, which triggers the overflow during alias expansion.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-10-10T00:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "25529", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/25529", }, { name: "1018066", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id?1018066", }, { name: "2007-0024", tags: [ "vendor-advisory", "x_refsource_TRUSTIX", ], url: "http://www.trustix.org/errata/2007/0024/", }, { name: "26415", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/26415", }, { tags: [ "x_refsource_MISC", ], url: "http://dev.mutt.org/trac/ticket/2885", }, { name: "25408", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/25408", }, { name: "34973", tags: [ "vdb-entry", "x_refsource_OSVDB", ], url: "http://osvdb.org/34973", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890", }, { name: "oval:org.mitre.oval:def:10543", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543", }, { name: "25546", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/25546", }, { name: "25515", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/25515", }, { name: "mutt-gecos-bo(34441)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441", }, { name: "MDKSA-2007:113", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113", }, { name: "RHSA-2007:0386", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2007-0386.html", }, { name: "24192", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/24192", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://issues.rpath.com/browse/RPL-1391", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2007-2683", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"&\" characters in the GECOS field, which triggers the overflow during alias expansion.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "25529", refsource: "SECUNIA", url: "http://secunia.com/advisories/25529", }, { name: "1018066", refsource: "SECTRACK", url: "http://www.securitytracker.com/id?1018066", }, { name: "2007-0024", refsource: "TRUSTIX", url: "http://www.trustix.org/errata/2007/0024/", }, { name: "26415", refsource: "SECUNIA", url: "http://secunia.com/advisories/26415", }, { name: "http://dev.mutt.org/trac/ticket/2885", refsource: "MISC", url: "http://dev.mutt.org/trac/ticket/2885", }, { name: "25408", refsource: "SECUNIA", url: "http://secunia.com/advisories/25408", }, { name: "34973", refsource: "OSVDB", url: "http://osvdb.org/34973", }, { name: "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890", refsource: "CONFIRM", url: "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890", }, { name: "oval:org.mitre.oval:def:10543", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543", }, { name: "25546", refsource: "SECUNIA", url: "http://secunia.com/advisories/25546", }, { name: "25515", refsource: "SECUNIA", url: "http://secunia.com/advisories/25515", }, { name: "mutt-gecos-bo(34441)", refsource: "XF", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441", }, { name: "MDKSA-2007:113", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113", }, { name: "RHSA-2007:0386", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2007-0386.html", }, { name: "24192", refsource: "BID", url: "http://www.securityfocus.com/bid/24192", }, { name: "https://issues.rpath.com/browse/RPL-1391", refsource: "CONFIRM", url: "https://issues.rpath.com/browse/RPL-1391", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2007-2683", datePublished: "2007-05-15T21:00:00", dateReserved: "2007-05-15T00:00:00", dateUpdated: "2024-08-07T13:49:57.139Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mutt:mutt:1.4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7A0CD218-AA09-49B0-A87B-7FC04FF54500\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \\\"&\\\" characters in the GECOS field, which triggers the overflow during alias expansion.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de b\\u00fafer en Mutt 1.4.2 podr\\u00eda permitir a usuarios locales ejecutar c\\u00f3digo de su elecci\\u00f3n mediante caracteres \\\"&\\\" en el campo GECOS, lo cual dispara el desbordamiento durante una expansi\\u00f3n de alias.\"}]", id: "CVE-2007-2683", lastModified: "2024-11-21T00:31:24.083", metrics: "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:H/Au:S/C:P/I:P/A:P\", \"baseScore\": 3.5, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"HIGH\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 1.5, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": true, \"userInteractionRequired\": false}]}", published: "2007-05-15T21:19:00.000", references: "[{\"url\": \"http://dev.mutt.org/trac/ticket/2885\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://osvdb.org/34973\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/25408\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/25515\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/25529\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/25546\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/26415\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDKSA-2007:113\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2007-0386.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/24192\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securitytracker.com/id?1018066\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.trustix.org/errata/2007/0024/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/34441\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://issues.rpath.com/browse/RPL-1391\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://dev.mutt.org/trac/ticket/2885\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://osvdb.org/34973\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/25408\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/25515\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/25529\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/25546\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/26415\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDKSA-2007:113\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2007-0386.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/24192\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securitytracker.com/id?1018066\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.trustix.org/errata/2007/0024/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/34441\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://issues.rpath.com/browse/RPL-1391\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]", sourceIdentifier: "cve@mitre.org", vendorComments: "[{\"organization\": \"Red Hat\", \"comment\": \"Updates for Red Hat Enterprise Linux are available from\\nhttp://rhn.redhat.com/errata/RHSA-2007-0386.html\", \"lastModified\": \"2007-06-04T00:00:00\"}]", vulnStatus: "Modified", weaknesses: "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2007-2683\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-05-15T21:19:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \\\"&\\\" characters in the GECOS field, which triggers the overflow during alias expansion.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de búfer en Mutt 1.4.2 podría permitir a usuarios locales ejecutar código de su elección mediante caracteres \\\"&\\\" en el campo GECOS, lo cual dispara el desbordamiento durante una expansión de alias.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:H/Au:S/C:P/I:P/A:P\",\"baseScore\":3.5,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"HIGH\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":1.5,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":true,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mutt:mutt:1.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A0CD218-AA09-49B0-A87B-7FC04FF54500\"}]}]}],\"references\":[{\"url\":\"http://dev.mutt.org/trac/ticket/2885\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://osvdb.org/34973\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/25408\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/25515\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/25529\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/25546\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/26415\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2007:113\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2007-0386.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/24192\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id?1018066\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.trustix.org/errata/2007/0024/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/34441\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://issues.rpath.com/browse/RPL-1391\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://dev.mutt.org/trac/ticket/2885\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://osvdb.org/34973\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/25408\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/25515\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/25529\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/25546\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/26415\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2007:113\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2007-0386.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/24192\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1018066\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.trustix.org/errata/2007/0024/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/34441\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://issues.rpath.com/browse/RPL-1391\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"vendorComments\":[{\"organization\":\"Red Hat\",\"comment\":\"Updates for Red Hat Enterprise Linux are available from\\nhttp://rhn.redhat.com/errata/RHSA-2007-0386.html\",\"lastModified\":\"2007-06-04T00:00:00\"}]}}", }, }
rhsa-2007:0386
Vulnerability from csaf_redhat
Published
2007-06-04 08:03
Modified
2024-11-22 01:10
Summary
Red Hat Security Advisory: mutt security update
Notes
Topic
An updated mutt package that fixes several security bugs is now available for
Red Hat Enterprise Linux 3, 4 and 5.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
Mutt is a text-mode mail user agent.
A flaw was found in the way Mutt used temporary files on NFS file systems.
Due to an implementation issue in the NFS protocol, Mutt was not able to
exclusively open a new file. A local attacker could conduct a
time-dependent attack and possibly gain access to e-mail attachments opened
by a victim. (CVE-2006-5297)
A flaw was found in the way Mutt processed certain APOP authentication
requests. By sending certain responses when mutt attempted to authenticate
against an APOP server, a remote attacker could potentially acquire certain
portions of a user's authentication credentials. (CVE-2007-1558)
A flaw was found in the way Mutt handled certain characters in gecos fields
which could lead to a buffer overflow. The gecos field is an entry in the
password database typically used to record general information about the
user. A local attacker could give themselves a carefully crafted "Real
Name" which could execute arbitrary code if a victim uses Mutt and expands
the attackers alias. (CVE-2007-2683)
All users of mutt should upgrade to this updated package, which
contains a backported patches to correct these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An updated mutt package that fixes several security bugs is now available for\nRed Hat Enterprise Linux 3, 4 and 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", title: "Topic", }, { category: "general", text: "Mutt is a text-mode mail user agent.\n\nA flaw was found in the way Mutt used temporary files on NFS file systems.\nDue to an implementation issue in the NFS protocol, Mutt was not able to\nexclusively open a new file. A local attacker could conduct a\ntime-dependent attack and possibly gain access to e-mail attachments opened\nby a victim. (CVE-2006-5297)\n\nA flaw was found in the way Mutt processed certain APOP authentication\nrequests. By sending certain responses when mutt attempted to authenticate\nagainst an APOP server, a remote attacker could potentially acquire certain\nportions of a user's authentication credentials. (CVE-2007-1558)\n\nA flaw was found in the way Mutt handled certain characters in gecos fields\nwhich could lead to a buffer overflow. The gecos field is an entry in the\npassword database typically used to record general information about the\nuser. A local attacker could give themselves a carefully crafted \"Real\nName\" which could execute arbitrary code if a victim uses Mutt and expands\nthe attackers alias. (CVE-2007-2683)\n\nAll users of mutt should upgrade to this updated package, which\ncontains a backported patches to correct these issues.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2007:0386", url: "https://access.redhat.com/errata/RHSA-2007:0386", }, { category: "external", summary: "http://www.redhat.com/security/updates/classification/#moderate", url: "http://www.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "211085", url: "https://bugzilla.redhat.com/show_bug.cgi?id=211085", }, { category: "external", summary: "239890", url: "https://bugzilla.redhat.com/show_bug.cgi?id=239890", }, { category: "external", summary: "241191", url: "https://bugzilla.redhat.com/show_bug.cgi?id=241191", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0386.json", }, ], title: "Red Hat Security Advisory: mutt security update", tracking: { current_release_date: "2024-11-22T01:10:09+00:00", generator: { date: "2024-11-22T01:10:09+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2007:0386", initial_release_date: "2007-06-04T08:03:00+00:00", revision_history: [ { date: "2007-06-04T08:03:00+00:00", number: "1", summary: "Initial version", }, { date: "2008-01-07T17:02:34+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T01:10:09+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AS version 4", product: { name: "Red Hat Enterprise Linux AS version 4", product_id: "4AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Desktop version 4", product: { name: "Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::desktop", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 4", product: { name: "Red Hat Enterprise Linux ES version 4", product_id: "4ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux WS version 4", product: { name: "Red Hat Enterprise Linux WS version 4", product_id: "4WS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::ws", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Desktop (v. 5 client)", product: { name: "Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:5::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux (v. 5 server)", product: { name: "Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:5::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux AS version 3", product: { name: "Red Hat Enterprise Linux AS version 3", product_id: "3AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::as", }, }, }, { category: "product_name", name: "Red Hat Desktop version 3", product: { name: "Red Hat Desktop version 3", product_id: "3Desktop", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::desktop", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 3", product: { name: "Red Hat Enterprise Linux ES version 3", product_id: "3ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux WS version 3", product: { name: "Red Hat Enterprise Linux WS version 3", product_id: "3WS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::ws", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.ia64", product: { name: "mutt-5:1.4.1-12.0.3.el4.ia64", product_id: "mutt-5:1.4.1-12.0.3.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.ia64", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.ia64", product_id: "mutt-5:1.4.2.2-3.0.2.el5.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.ia64", product: { name: "mutt-5:1.4.1-5.el3.ia64", product_id: "mutt-5:1.4.1-5.el3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.ia64", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64", product_id: "mutt-debuginfo-5:1.4.1-5.el3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=ia64&epoch=5", }, }, }, ], category: "architecture", name: "ia64", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.src", product: { name: "mutt-5:1.4.1-12.0.3.el4.src", product_id: "mutt-5:1.4.1-12.0.3.el4.src", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=src&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.src", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.src", product_id: "mutt-5:1.4.2.2-3.0.2.el5.src", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=src&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.src", product: { name: "mutt-5:1.4.1-5.el3.src", product_id: "mutt-5:1.4.1-5.el3.src", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=src&epoch=5", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.x86_64", product: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64", product_id: "mutt-5:1.4.1-12.0.3.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", product_id: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.x86_64", product: { name: "mutt-5:1.4.1-5.el3.x86_64", product_id: "mutt-5:1.4.1-5.el3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", product_id: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=x86_64&epoch=5", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.i386", product: { name: "mutt-5:1.4.1-12.0.3.el4.i386", product_id: "mutt-5:1.4.1-12.0.3.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.i386", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.i386", product_id: "mutt-5:1.4.2.2-3.0.2.el5.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.i386", product: { name: "mutt-5:1.4.1-5.el3.i386", product_id: "mutt-5:1.4.1-5.el3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.i386", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386", product_id: "mutt-debuginfo-5:1.4.1-5.el3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=i386&epoch=5", }, }, }, ], category: "architecture", name: "i386", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.ppc", product: { name: "mutt-5:1.4.1-12.0.3.el4.ppc", product_id: "mutt-5:1.4.1-12.0.3.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.ppc", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.ppc", product_id: "mutt-5:1.4.2.2-3.0.2.el5.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.ppc", product: { name: "mutt-5:1.4.1-5.el3.ppc", product_id: "mutt-5:1.4.1-5.el3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.ppc", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc", product_id: "mutt-debuginfo-5:1.4.1-5.el3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=ppc&epoch=5", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.s390", product: { name: "mutt-5:1.4.1-12.0.3.el4.s390", product_id: "mutt-5:1.4.1-12.0.3.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=s390&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=s390&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.s390", product: { name: "mutt-5:1.4.1-5.el3.s390", product_id: "mutt-5:1.4.1-5.el3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=s390&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.s390", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390", product_id: "mutt-debuginfo-5:1.4.1-5.el3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=s390&epoch=5", }, }, }, ], category: "architecture", name: "s390", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.s390x", product: { name: "mutt-5:1.4.1-12.0.3.el4.s390x", product_id: "mutt-5:1.4.1-12.0.3.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.s390x", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.s390x", product_id: "mutt-5:1.4.2.2-3.0.2.el5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.s390x", product: { name: "mutt-5:1.4.1-5.el3.s390x", product_id: "mutt-5:1.4.1-5.el3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.s390x", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x", product_id: "mutt-debuginfo-5:1.4.1-5.el3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=s390x&epoch=5", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.src", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.src", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Server", }, ], }, vulnerabilities: [ { cve: "CVE-2006-5297", discovery_date: "2006-10-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "211085", }, ], notes: [ { category: "description", text: "Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.", title: "Vulnerability description", }, { category: "summary", text: "Multiple mutt tempfile race conditions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.\n\nThe risks associated with fixing this bug are greater than the low severity security risk. We therefore currently have no plans to fix this flaw in Red Hat Enterprise Linux 2.1 which is in maintenance mode.", title: "Statement", }, ], product_status: { fixed: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2006-5297", }, { category: "external", summary: "RHBZ#211085", url: "https://bugzilla.redhat.com/show_bug.cgi?id=211085", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2006-5297", url: "https://www.cve.org/CVERecord?id=CVE-2006-5297", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2006-5297", url: "https://nvd.nist.gov/vuln/detail/CVE-2006-5297", }, ], release_date: "2006-10-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-06-04T08:03:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", product_ids: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0386", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Multiple mutt tempfile race conditions", }, { cve: "CVE-2007-1558", discovery_date: "2007-03-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "241191", }, ], notes: [ { category: "description", text: "The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including (1) Thunderbird 1.x before 1.5.0.12 and 2.x before 2.0.0.4, (2) Evolution, (3) mutt, (4) fetchmail before 6.3.8, (5) SeaMonkey 1.0.x before 1.0.9 and 1.1.x before 1.1.2, (6) Balsa 2.3.16 and earlier, (7) Mailfilter before 0.8.2, and possibly other products.", title: "Vulnerability description", }, { category: "summary", text: "fetchmail/mutt/evolution/...: APOP password disclosure vulnerability", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2007-1558", }, { category: "external", summary: "RHBZ#241191", url: "https://bugzilla.redhat.com/show_bug.cgi?id=241191", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2007-1558", url: "https://www.cve.org/CVERecord?id=CVE-2007-1558", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2007-1558", url: "https://nvd.nist.gov/vuln/detail/CVE-2007-1558", }, ], release_date: "2007-04-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-06-04T08:03:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", product_ids: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0386", }, ], scores: [ { cvss_v2: { accessComplexity: "HIGH", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "NONE", baseScore: 2.6, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:H/Au:N/C:P/I:N/A:N", version: "2.0", }, products: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "fetchmail/mutt/evolution/...: APOP password disclosure vulnerability", }, { cve: "CVE-2007-2683", discovery_date: "2007-05-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "239890", }, ], notes: [ { category: "description", text: "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"&\" characters in the GECOS field, which triggers the overflow during alias expansion.", title: "Vulnerability description", }, { category: "summary", text: "Buffer overflow in mutt's gecos structure handling", title: "Vulnerability summary", }, ], product_status: { fixed: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2007-2683", }, { category: "external", summary: "RHBZ#239890", url: "https://bugzilla.redhat.com/show_bug.cgi?id=239890", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2007-2683", url: "https://www.cve.org/CVERecord?id=CVE-2007-2683", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2007-2683", url: "https://nvd.nist.gov/vuln/detail/CVE-2007-2683", }, ], release_date: "2007-05-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-06-04T08:03:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", product_ids: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0386", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Buffer overflow in mutt's gecos structure handling", }, ], }
RHSA-2007:0386
Vulnerability from csaf_redhat
Published
2007-06-04 08:03
Modified
2024-11-22 01:10
Summary
Red Hat Security Advisory: mutt security update
Notes
Topic
An updated mutt package that fixes several security bugs is now available for
Red Hat Enterprise Linux 3, 4 and 5.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
Mutt is a text-mode mail user agent.
A flaw was found in the way Mutt used temporary files on NFS file systems.
Due to an implementation issue in the NFS protocol, Mutt was not able to
exclusively open a new file. A local attacker could conduct a
time-dependent attack and possibly gain access to e-mail attachments opened
by a victim. (CVE-2006-5297)
A flaw was found in the way Mutt processed certain APOP authentication
requests. By sending certain responses when mutt attempted to authenticate
against an APOP server, a remote attacker could potentially acquire certain
portions of a user's authentication credentials. (CVE-2007-1558)
A flaw was found in the way Mutt handled certain characters in gecos fields
which could lead to a buffer overflow. The gecos field is an entry in the
password database typically used to record general information about the
user. A local attacker could give themselves a carefully crafted "Real
Name" which could execute arbitrary code if a victim uses Mutt and expands
the attackers alias. (CVE-2007-2683)
All users of mutt should upgrade to this updated package, which
contains a backported patches to correct these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An updated mutt package that fixes several security bugs is now available for\nRed Hat Enterprise Linux 3, 4 and 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", title: "Topic", }, { category: "general", text: "Mutt is a text-mode mail user agent.\n\nA flaw was found in the way Mutt used temporary files on NFS file systems.\nDue to an implementation issue in the NFS protocol, Mutt was not able to\nexclusively open a new file. A local attacker could conduct a\ntime-dependent attack and possibly gain access to e-mail attachments opened\nby a victim. (CVE-2006-5297)\n\nA flaw was found in the way Mutt processed certain APOP authentication\nrequests. By sending certain responses when mutt attempted to authenticate\nagainst an APOP server, a remote attacker could potentially acquire certain\nportions of a user's authentication credentials. (CVE-2007-1558)\n\nA flaw was found in the way Mutt handled certain characters in gecos fields\nwhich could lead to a buffer overflow. The gecos field is an entry in the\npassword database typically used to record general information about the\nuser. A local attacker could give themselves a carefully crafted \"Real\nName\" which could execute arbitrary code if a victim uses Mutt and expands\nthe attackers alias. (CVE-2007-2683)\n\nAll users of mutt should upgrade to this updated package, which\ncontains a backported patches to correct these issues.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2007:0386", url: "https://access.redhat.com/errata/RHSA-2007:0386", }, { category: "external", summary: "http://www.redhat.com/security/updates/classification/#moderate", url: "http://www.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "211085", url: "https://bugzilla.redhat.com/show_bug.cgi?id=211085", }, { category: "external", summary: "239890", url: "https://bugzilla.redhat.com/show_bug.cgi?id=239890", }, { category: "external", summary: "241191", url: "https://bugzilla.redhat.com/show_bug.cgi?id=241191", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0386.json", }, ], title: "Red Hat Security Advisory: mutt security update", tracking: { current_release_date: "2024-11-22T01:10:09+00:00", generator: { date: "2024-11-22T01:10:09+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2007:0386", initial_release_date: "2007-06-04T08:03:00+00:00", revision_history: [ { date: "2007-06-04T08:03:00+00:00", number: "1", summary: "Initial version", }, { date: "2008-01-07T17:02:34+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T01:10:09+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AS version 4", product: { name: "Red Hat Enterprise Linux AS version 4", product_id: "4AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Desktop version 4", product: { name: "Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::desktop", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 4", product: { name: "Red Hat Enterprise Linux ES version 4", product_id: "4ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux WS version 4", product: { name: "Red Hat Enterprise Linux WS version 4", product_id: "4WS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::ws", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Desktop (v. 5 client)", product: { name: "Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:5::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux (v. 5 server)", product: { name: "Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:5::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux AS version 3", product: { name: "Red Hat Enterprise Linux AS version 3", product_id: "3AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::as", }, }, }, { category: "product_name", name: "Red Hat Desktop version 3", product: { name: "Red Hat Desktop version 3", product_id: "3Desktop", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::desktop", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 3", product: { name: "Red Hat Enterprise Linux ES version 3", product_id: "3ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux WS version 3", product: { name: "Red Hat Enterprise Linux WS version 3", product_id: "3WS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::ws", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.ia64", product: { name: "mutt-5:1.4.1-12.0.3.el4.ia64", product_id: "mutt-5:1.4.1-12.0.3.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.ia64", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.ia64", product_id: "mutt-5:1.4.2.2-3.0.2.el5.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.ia64", product: { name: "mutt-5:1.4.1-5.el3.ia64", product_id: "mutt-5:1.4.1-5.el3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.ia64", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64", product_id: "mutt-debuginfo-5:1.4.1-5.el3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=ia64&epoch=5", }, }, }, ], category: "architecture", name: "ia64", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.src", product: { name: "mutt-5:1.4.1-12.0.3.el4.src", product_id: "mutt-5:1.4.1-12.0.3.el4.src", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=src&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.src", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.src", product_id: "mutt-5:1.4.2.2-3.0.2.el5.src", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=src&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.src", product: { name: "mutt-5:1.4.1-5.el3.src", product_id: "mutt-5:1.4.1-5.el3.src", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=src&epoch=5", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.x86_64", product: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64", product_id: "mutt-5:1.4.1-12.0.3.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", product_id: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.x86_64", product: { name: "mutt-5:1.4.1-5.el3.x86_64", product_id: "mutt-5:1.4.1-5.el3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", product_id: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=x86_64&epoch=5", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.i386", product: { name: "mutt-5:1.4.1-12.0.3.el4.i386", product_id: "mutt-5:1.4.1-12.0.3.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.i386", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.i386", product_id: "mutt-5:1.4.2.2-3.0.2.el5.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.i386", product: { name: "mutt-5:1.4.1-5.el3.i386", product_id: "mutt-5:1.4.1-5.el3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.i386", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386", product_id: "mutt-debuginfo-5:1.4.1-5.el3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=i386&epoch=5", }, }, }, ], category: "architecture", name: "i386", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.ppc", product: { name: "mutt-5:1.4.1-12.0.3.el4.ppc", product_id: "mutt-5:1.4.1-12.0.3.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.ppc", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.ppc", product_id: "mutt-5:1.4.2.2-3.0.2.el5.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.ppc", product: { name: "mutt-5:1.4.1-5.el3.ppc", product_id: "mutt-5:1.4.1-5.el3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.ppc", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc", product_id: "mutt-debuginfo-5:1.4.1-5.el3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=ppc&epoch=5", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.s390", product: { name: "mutt-5:1.4.1-12.0.3.el4.s390", product_id: "mutt-5:1.4.1-12.0.3.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=s390&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=s390&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.s390", product: { name: "mutt-5:1.4.1-5.el3.s390", product_id: "mutt-5:1.4.1-5.el3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=s390&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.s390", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390", product_id: "mutt-debuginfo-5:1.4.1-5.el3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=s390&epoch=5", }, }, }, ], category: "architecture", name: "s390", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.s390x", product: { name: "mutt-5:1.4.1-12.0.3.el4.s390x", product_id: "mutt-5:1.4.1-12.0.3.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.s390x", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.s390x", product_id: "mutt-5:1.4.2.2-3.0.2.el5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.s390x", product: { name: "mutt-5:1.4.1-5.el3.s390x", product_id: "mutt-5:1.4.1-5.el3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.s390x", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x", product_id: "mutt-debuginfo-5:1.4.1-5.el3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=s390x&epoch=5", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.src", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.src", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Server", }, ], }, vulnerabilities: [ { cve: "CVE-2006-5297", discovery_date: "2006-10-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "211085", }, ], notes: [ { category: "description", text: "Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.", title: "Vulnerability description", }, { category: "summary", text: "Multiple mutt tempfile race conditions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.\n\nThe risks associated with fixing this bug are greater than the low severity security risk. We therefore currently have no plans to fix this flaw in Red Hat Enterprise Linux 2.1 which is in maintenance mode.", title: "Statement", }, ], product_status: { fixed: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2006-5297", }, { category: "external", summary: "RHBZ#211085", url: "https://bugzilla.redhat.com/show_bug.cgi?id=211085", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2006-5297", url: "https://www.cve.org/CVERecord?id=CVE-2006-5297", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2006-5297", url: "https://nvd.nist.gov/vuln/detail/CVE-2006-5297", }, ], release_date: "2006-10-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-06-04T08:03:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", product_ids: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0386", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Multiple mutt tempfile race conditions", }, { cve: "CVE-2007-1558", discovery_date: "2007-03-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "241191", }, ], notes: [ { category: "description", text: "The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including (1) Thunderbird 1.x before 1.5.0.12 and 2.x before 2.0.0.4, (2) Evolution, (3) mutt, (4) fetchmail before 6.3.8, (5) SeaMonkey 1.0.x before 1.0.9 and 1.1.x before 1.1.2, (6) Balsa 2.3.16 and earlier, (7) Mailfilter before 0.8.2, and possibly other products.", title: "Vulnerability description", }, { category: "summary", text: "fetchmail/mutt/evolution/...: APOP password disclosure vulnerability", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2007-1558", }, { category: "external", summary: "RHBZ#241191", url: "https://bugzilla.redhat.com/show_bug.cgi?id=241191", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2007-1558", url: "https://www.cve.org/CVERecord?id=CVE-2007-1558", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2007-1558", url: "https://nvd.nist.gov/vuln/detail/CVE-2007-1558", }, ], release_date: "2007-04-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-06-04T08:03:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", product_ids: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0386", }, ], scores: [ { cvss_v2: { accessComplexity: "HIGH", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "NONE", baseScore: 2.6, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:H/Au:N/C:P/I:N/A:N", version: "2.0", }, products: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "fetchmail/mutt/evolution/...: APOP password disclosure vulnerability", }, { cve: "CVE-2007-2683", discovery_date: "2007-05-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "239890", }, ], notes: [ { category: "description", text: "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"&\" characters in the GECOS field, which triggers the overflow during alias expansion.", title: "Vulnerability description", }, { category: "summary", text: "Buffer overflow in mutt's gecos structure handling", title: "Vulnerability summary", }, ], product_status: { fixed: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2007-2683", }, { category: "external", summary: "RHBZ#239890", url: "https://bugzilla.redhat.com/show_bug.cgi?id=239890", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2007-2683", url: "https://www.cve.org/CVERecord?id=CVE-2007-2683", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2007-2683", url: "https://nvd.nist.gov/vuln/detail/CVE-2007-2683", }, ], release_date: "2007-05-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-06-04T08:03:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", product_ids: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0386", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Buffer overflow in mutt's gecos structure handling", }, ], }
rhsa-2007_0386
Vulnerability from csaf_redhat
Published
2007-06-04 08:03
Modified
2024-11-22 01:10
Summary
Red Hat Security Advisory: mutt security update
Notes
Topic
An updated mutt package that fixes several security bugs is now available for
Red Hat Enterprise Linux 3, 4 and 5.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
Mutt is a text-mode mail user agent.
A flaw was found in the way Mutt used temporary files on NFS file systems.
Due to an implementation issue in the NFS protocol, Mutt was not able to
exclusively open a new file. A local attacker could conduct a
time-dependent attack and possibly gain access to e-mail attachments opened
by a victim. (CVE-2006-5297)
A flaw was found in the way Mutt processed certain APOP authentication
requests. By sending certain responses when mutt attempted to authenticate
against an APOP server, a remote attacker could potentially acquire certain
portions of a user's authentication credentials. (CVE-2007-1558)
A flaw was found in the way Mutt handled certain characters in gecos fields
which could lead to a buffer overflow. The gecos field is an entry in the
password database typically used to record general information about the
user. A local attacker could give themselves a carefully crafted "Real
Name" which could execute arbitrary code if a victim uses Mutt and expands
the attackers alias. (CVE-2007-2683)
All users of mutt should upgrade to this updated package, which
contains a backported patches to correct these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An updated mutt package that fixes several security bugs is now available for\nRed Hat Enterprise Linux 3, 4 and 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", title: "Topic", }, { category: "general", text: "Mutt is a text-mode mail user agent.\n\nA flaw was found in the way Mutt used temporary files on NFS file systems.\nDue to an implementation issue in the NFS protocol, Mutt was not able to\nexclusively open a new file. A local attacker could conduct a\ntime-dependent attack and possibly gain access to e-mail attachments opened\nby a victim. (CVE-2006-5297)\n\nA flaw was found in the way Mutt processed certain APOP authentication\nrequests. By sending certain responses when mutt attempted to authenticate\nagainst an APOP server, a remote attacker could potentially acquire certain\nportions of a user's authentication credentials. (CVE-2007-1558)\n\nA flaw was found in the way Mutt handled certain characters in gecos fields\nwhich could lead to a buffer overflow. The gecos field is an entry in the\npassword database typically used to record general information about the\nuser. A local attacker could give themselves a carefully crafted \"Real\nName\" which could execute arbitrary code if a victim uses Mutt and expands\nthe attackers alias. (CVE-2007-2683)\n\nAll users of mutt should upgrade to this updated package, which\ncontains a backported patches to correct these issues.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2007:0386", url: "https://access.redhat.com/errata/RHSA-2007:0386", }, { category: "external", summary: "http://www.redhat.com/security/updates/classification/#moderate", url: "http://www.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "211085", url: "https://bugzilla.redhat.com/show_bug.cgi?id=211085", }, { category: "external", summary: "239890", url: "https://bugzilla.redhat.com/show_bug.cgi?id=239890", }, { category: "external", summary: "241191", url: "https://bugzilla.redhat.com/show_bug.cgi?id=241191", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0386.json", }, ], title: "Red Hat Security Advisory: mutt security update", tracking: { current_release_date: "2024-11-22T01:10:09+00:00", generator: { date: "2024-11-22T01:10:09+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2007:0386", initial_release_date: "2007-06-04T08:03:00+00:00", revision_history: [ { date: "2007-06-04T08:03:00+00:00", number: "1", summary: "Initial version", }, { date: "2008-01-07T17:02:34+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T01:10:09+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AS version 4", product: { name: "Red Hat Enterprise Linux AS version 4", product_id: "4AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Desktop version 4", product: { name: "Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::desktop", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 4", product: { name: "Red Hat Enterprise Linux ES version 4", product_id: "4ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux WS version 4", product: { name: "Red Hat Enterprise Linux WS version 4", product_id: "4WS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::ws", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Desktop (v. 5 client)", product: { name: "Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:5::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux (v. 5 server)", product: { name: "Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:5::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux AS version 3", product: { name: "Red Hat Enterprise Linux AS version 3", product_id: "3AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::as", }, }, }, { category: "product_name", name: "Red Hat Desktop version 3", product: { name: "Red Hat Desktop version 3", product_id: "3Desktop", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::desktop", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 3", product: { name: "Red Hat Enterprise Linux ES version 3", product_id: "3ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux WS version 3", product: { name: "Red Hat Enterprise Linux WS version 3", product_id: "3WS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:3::ws", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.ia64", product: { name: "mutt-5:1.4.1-12.0.3.el4.ia64", product_id: "mutt-5:1.4.1-12.0.3.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.ia64", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.ia64", product_id: "mutt-5:1.4.2.2-3.0.2.el5.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.ia64", product: { name: "mutt-5:1.4.1-5.el3.ia64", product_id: "mutt-5:1.4.1-5.el3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=ia64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.ia64", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64", product_id: "mutt-debuginfo-5:1.4.1-5.el3.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=ia64&epoch=5", }, }, }, ], category: "architecture", name: "ia64", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.src", product: { name: "mutt-5:1.4.1-12.0.3.el4.src", product_id: "mutt-5:1.4.1-12.0.3.el4.src", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=src&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.src", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.src", product_id: "mutt-5:1.4.2.2-3.0.2.el5.src", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=src&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.src", product: { name: "mutt-5:1.4.1-5.el3.src", product_id: "mutt-5:1.4.1-5.el3.src", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=src&epoch=5", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.x86_64", product: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64", product_id: "mutt-5:1.4.1-12.0.3.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", product_id: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.x86_64", product: { name: "mutt-5:1.4.1-5.el3.x86_64", product_id: "mutt-5:1.4.1-5.el3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=x86_64&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", product_id: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=x86_64&epoch=5", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.i386", product: { name: "mutt-5:1.4.1-12.0.3.el4.i386", product_id: "mutt-5:1.4.1-12.0.3.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.i386", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.i386", product_id: "mutt-5:1.4.2.2-3.0.2.el5.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.i386", product: { name: "mutt-5:1.4.1-5.el3.i386", product_id: "mutt-5:1.4.1-5.el3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=i386&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.i386", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386", product_id: "mutt-debuginfo-5:1.4.1-5.el3.i386", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=i386&epoch=5", }, }, }, ], category: "architecture", name: "i386", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.ppc", product: { name: "mutt-5:1.4.1-12.0.3.el4.ppc", product_id: "mutt-5:1.4.1-12.0.3.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.ppc", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.ppc", product_id: "mutt-5:1.4.2.2-3.0.2.el5.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.ppc", product: { name: "mutt-5:1.4.1-5.el3.ppc", product_id: "mutt-5:1.4.1-5.el3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=ppc&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.ppc", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc", product_id: "mutt-debuginfo-5:1.4.1-5.el3.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=ppc&epoch=5", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.s390", product: { name: "mutt-5:1.4.1-12.0.3.el4.s390", product_id: "mutt-5:1.4.1-12.0.3.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=s390&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=s390&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.s390", product: { name: "mutt-5:1.4.1-5.el3.s390", product_id: "mutt-5:1.4.1-5.el3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=s390&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.s390", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390", product_id: "mutt-debuginfo-5:1.4.1-5.el3.s390", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=s390&epoch=5", }, }, }, ], category: "architecture", name: "s390", }, { branches: [ { category: "product_version", name: "mutt-5:1.4.1-12.0.3.el4.s390x", product: { name: "mutt-5:1.4.1-12.0.3.el4.s390x", product_id: "mutt-5:1.4.1-12.0.3.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", product: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", product_id: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", product: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", product_id: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.2.2-3.0.2.el5.s390x", product: { name: "mutt-5:1.4.2.2-3.0.2.el5.s390x", product_id: "mutt-5:1.4.2.2-3.0.2.el5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-5:1.4.1-5.el3.s390x", product: { name: "mutt-5:1.4.1-5.el3.s390x", product_id: "mutt-5:1.4.1-5.el3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=s390x&epoch=5", }, }, }, { category: "product_version", name: "mutt-debuginfo-5:1.4.1-5.el3.s390x", product: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x", product_id: "mutt-debuginfo-5:1.4.1-5.el3.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=s390x&epoch=5", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux AS version 3", product_id: "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Desktop version 3", product_id: "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux ES version 3", product_id: "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.i386", }, product_reference: "mutt-5:1.4.1-5.el3.i386", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.s390", }, product_reference: "mutt-5:1.4.1-5.el3.s390", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.src", }, product_reference: "mutt-5:1.4.1-5.el3.src", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.i386", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ia64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.ppc", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.s390x", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux WS version 3", product_id: "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-5.el3.x86_64", relates_to_product_reference: "3WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.src", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.src", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.src", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", product_id: "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Client", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.src", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", relates_to_product_reference: "5Server", }, { category: "default_component_of", full_product_name: { name: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", product_id: "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", }, product_reference: "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", relates_to_product_reference: "5Server", }, ], }, vulnerabilities: [ { cve: "CVE-2006-5297", discovery_date: "2006-10-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "211085", }, ], notes: [ { category: "description", text: "Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.", title: "Vulnerability description", }, { category: "summary", text: "Multiple mutt tempfile race conditions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.\n\nThe risks associated with fixing this bug are greater than the low severity security risk. We therefore currently have no plans to fix this flaw in Red Hat Enterprise Linux 2.1 which is in maintenance mode.", title: "Statement", }, ], product_status: { fixed: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2006-5297", }, { category: "external", summary: "RHBZ#211085", url: "https://bugzilla.redhat.com/show_bug.cgi?id=211085", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2006-5297", url: "https://www.cve.org/CVERecord?id=CVE-2006-5297", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2006-5297", url: "https://nvd.nist.gov/vuln/detail/CVE-2006-5297", }, ], release_date: "2006-10-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-06-04T08:03:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", product_ids: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0386", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Multiple mutt tempfile race conditions", }, { cve: "CVE-2007-1558", discovery_date: "2007-03-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "241191", }, ], notes: [ { category: "description", text: "The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including (1) Thunderbird 1.x before 1.5.0.12 and 2.x before 2.0.0.4, (2) Evolution, (3) mutt, (4) fetchmail before 6.3.8, (5) SeaMonkey 1.0.x before 1.0.9 and 1.1.x before 1.1.2, (6) Balsa 2.3.16 and earlier, (7) Mailfilter before 0.8.2, and possibly other products.", title: "Vulnerability description", }, { category: "summary", text: "fetchmail/mutt/evolution/...: APOP password disclosure vulnerability", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2007-1558", }, { category: "external", summary: "RHBZ#241191", url: "https://bugzilla.redhat.com/show_bug.cgi?id=241191", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2007-1558", url: "https://www.cve.org/CVERecord?id=CVE-2007-1558", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2007-1558", url: "https://nvd.nist.gov/vuln/detail/CVE-2007-1558", }, ], release_date: "2007-04-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-06-04T08:03:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", product_ids: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0386", }, ], scores: [ { cvss_v2: { accessComplexity: "HIGH", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "NONE", baseScore: 2.6, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:H/Au:N/C:P/I:N/A:N", version: "2.0", }, products: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "fetchmail/mutt/evolution/...: APOP password disclosure vulnerability", }, { cve: "CVE-2007-2683", discovery_date: "2007-05-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "239890", }, ], notes: [ { category: "description", text: "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"&\" characters in the GECOS field, which triggers the overflow during alias expansion.", title: "Vulnerability description", }, { category: "summary", text: "Buffer overflow in mutt's gecos structure handling", title: "Vulnerability summary", }, ], product_status: { fixed: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2007-2683", }, { category: "external", summary: "RHBZ#239890", url: "https://bugzilla.redhat.com/show_bug.cgi?id=239890", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2007-2683", url: "https://www.cve.org/CVERecord?id=CVE-2007-2683", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2007-2683", url: "https://nvd.nist.gov/vuln/detail/CVE-2007-2683", }, ], release_date: "2007-05-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-06-04T08:03:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", product_ids: [ "3AS:mutt-5:1.4.1-5.el3.i386", "3AS:mutt-5:1.4.1-5.el3.ia64", "3AS:mutt-5:1.4.1-5.el3.ppc", "3AS:mutt-5:1.4.1-5.el3.s390", "3AS:mutt-5:1.4.1-5.el3.s390x", "3AS:mutt-5:1.4.1-5.el3.src", "3AS:mutt-5:1.4.1-5.el3.x86_64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-5:1.4.1-5.el3.i386", "3Desktop:mutt-5:1.4.1-5.el3.ia64", "3Desktop:mutt-5:1.4.1-5.el3.ppc", "3Desktop:mutt-5:1.4.1-5.el3.s390", "3Desktop:mutt-5:1.4.1-5.el3.s390x", "3Desktop:mutt-5:1.4.1-5.el3.src", "3Desktop:mutt-5:1.4.1-5.el3.x86_64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3ES:mutt-5:1.4.1-5.el3.i386", "3ES:mutt-5:1.4.1-5.el3.ia64", "3ES:mutt-5:1.4.1-5.el3.ppc", "3ES:mutt-5:1.4.1-5.el3.s390", "3ES:mutt-5:1.4.1-5.el3.s390x", "3ES:mutt-5:1.4.1-5.el3.src", "3ES:mutt-5:1.4.1-5.el3.x86_64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390", "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "3WS:mutt-5:1.4.1-5.el3.i386", "3WS:mutt-5:1.4.1-5.el3.ia64", "3WS:mutt-5:1.4.1-5.el3.ppc", "3WS:mutt-5:1.4.1-5.el3.s390", "3WS:mutt-5:1.4.1-5.el3.s390x", "3WS:mutt-5:1.4.1-5.el3.src", "3WS:mutt-5:1.4.1-5.el3.x86_64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64", "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390", "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x", "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64", "4AS:mutt-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-5:1.4.1-12.0.3.el4.src", "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-5:1.4.1-12.0.3.el4.src", "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-5:1.4.1-12.0.3.el4.src", "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-5:1.4.1-12.0.3.el4.src", "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x", "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-5:1.4.2.2-3.0.2.el5.src", "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-5:1.4.2.2-3.0.2.el5.src", "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x", "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0386", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Buffer overflow in mutt's gecos structure handling", }, ], }
gsd-2007-2683
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via "&" characters in the GECOS field, which triggers the overflow during alias expansion.
Aliases
Aliases
{ GSD: { alias: "CVE-2007-2683", description: "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"&\" characters in the GECOS field, which triggers the overflow during alias expansion.", id: "GSD-2007-2683", references: [ "https://www.suse.com/security/cve/CVE-2007-2683.html", "https://access.redhat.com/errata/RHSA-2007:0386", "https://linux.oracle.com/cve/CVE-2007-2683.html", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2007-2683", ], details: "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"&\" characters in the GECOS field, which triggers the overflow during alias expansion.", id: "GSD-2007-2683", modified: "2023-12-13T01:21:37.467220Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2007-2683", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"&\" characters in the GECOS field, which triggers the overflow during alias expansion.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "25529", refsource: "SECUNIA", url: "http://secunia.com/advisories/25529", }, { name: "1018066", refsource: "SECTRACK", url: "http://www.securitytracker.com/id?1018066", }, { name: "2007-0024", refsource: "TRUSTIX", url: "http://www.trustix.org/errata/2007/0024/", }, { name: "26415", refsource: "SECUNIA", url: "http://secunia.com/advisories/26415", }, { name: "http://dev.mutt.org/trac/ticket/2885", refsource: "MISC", url: "http://dev.mutt.org/trac/ticket/2885", }, { name: "25408", refsource: "SECUNIA", url: "http://secunia.com/advisories/25408", }, { name: "34973", refsource: "OSVDB", url: "http://osvdb.org/34973", }, { name: "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890", refsource: "CONFIRM", url: "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890", }, { name: "oval:org.mitre.oval:def:10543", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543", }, { name: "25546", refsource: "SECUNIA", url: "http://secunia.com/advisories/25546", }, { name: "25515", refsource: "SECUNIA", url: "http://secunia.com/advisories/25515", }, { name: "mutt-gecos-bo(34441)", refsource: "XF", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441", }, { name: "MDKSA-2007:113", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113", }, { name: "RHSA-2007:0386", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2007-0386.html", }, { name: "24192", refsource: "BID", url: "http://www.securityfocus.com/bid/24192", }, { name: "https://issues.rpath.com/browse/RPL-1391", refsource: "CONFIRM", url: "https://issues.rpath.com/browse/RPL-1391", }, ], }, }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:mutt:mutt:1.4.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2007-2683", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"&\" characters in the GECOS field, which triggers the overflow during alias expansion.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], }, ], }, references: { reference_data: [ { name: "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890", refsource: "CONFIRM", tags: [], url: "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890", }, { name: "1018066", refsource: "SECTRACK", tags: [], url: "http://www.securitytracker.com/id?1018066", }, { name: "http://dev.mutt.org/trac/ticket/2885", refsource: "MISC", tags: [], url: "http://dev.mutt.org/trac/ticket/2885", }, { name: "https://issues.rpath.com/browse/RPL-1391", refsource: "CONFIRM", tags: [], url: "https://issues.rpath.com/browse/RPL-1391", }, { name: "MDKSA-2007:113", refsource: "MANDRIVA", tags: [], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113", }, { name: "RHSA-2007:0386", refsource: "REDHAT", tags: [], url: "http://www.redhat.com/support/errata/RHSA-2007-0386.html", }, { name: "2007-0024", refsource: "TRUSTIX", tags: [], url: "http://www.trustix.org/errata/2007/0024/", }, { name: "24192", refsource: "BID", tags: [], url: "http://www.securityfocus.com/bid/24192", }, { name: "25408", refsource: "SECUNIA", tags: [], url: "http://secunia.com/advisories/25408", }, { name: "25529", refsource: "SECUNIA", tags: [], url: "http://secunia.com/advisories/25529", }, { name: "25515", refsource: "SECUNIA", tags: [], url: "http://secunia.com/advisories/25515", }, { name: "25546", refsource: "SECUNIA", tags: [], url: "http://secunia.com/advisories/25546", }, { name: "26415", refsource: "SECUNIA", tags: [], url: "http://secunia.com/advisories/26415", }, { name: "34973", refsource: "OSVDB", tags: [], url: "http://osvdb.org/34973", }, { name: "mutt-gecos-bo(34441)", refsource: "XF", tags: [], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441", }, { name: "oval:org.mitre.oval:def:10543", refsource: "OVAL", tags: [], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543", }, ], }, }, impact: { baseMetricV2: { cvssV2: { accessComplexity: "HIGH", accessVector: "LOCAL", authentication: "SINGLE", availabilityImpact: "PARTIAL", baseScore: 3.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:L/AC:H/Au:S/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 1.5, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: true, obtainUserPrivilege: false, severity: "LOW", userInteractionRequired: false, }, }, lastModifiedDate: "2017-10-11T01:32Z", publishedDate: "2007-05-15T21:19Z", }, }, }
ghsa-c6h8-qr22-65qm
Vulnerability from github
Published
2022-05-01 18:06
Modified
2025-04-09 03:41
Details
Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via "&" characters in the GECOS field, which triggers the overflow during alias expansion.
{ affected: [], aliases: [ "CVE-2007-2683", ], database_specific: { cwe_ids: [], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2007-05-15T21:19:00Z", severity: "LOW", }, details: "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"&\" characters in the GECOS field, which triggers the overflow during alias expansion.", id: "GHSA-c6h8-qr22-65qm", modified: "2025-04-09T03:41:37Z", published: "2022-05-01T18:06:06Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2007-2683", }, { type: "WEB", url: "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890", }, { type: "WEB", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441", }, { type: "WEB", url: "https://issues.rpath.com/browse/RPL-1391", }, { type: "WEB", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543", }, { type: "WEB", url: "http://dev.mutt.org/trac/ticket/2885", }, { type: "WEB", url: "http://osvdb.org/34973", }, { type: "WEB", url: "http://secunia.com/advisories/25408", }, { type: "WEB", url: "http://secunia.com/advisories/25515", }, { type: "WEB", url: "http://secunia.com/advisories/25529", }, { type: "WEB", url: "http://secunia.com/advisories/25546", }, { type: "WEB", url: "http://secunia.com/advisories/26415", }, { type: "WEB", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113", }, { type: "WEB", url: "http://www.redhat.com/support/errata/RHSA-2007-0386.html", }, { type: "WEB", url: "http://www.securityfocus.com/bid/24192", }, { type: "WEB", url: "http://www.securitytracker.com/id?1018066", }, { type: "WEB", url: "http://www.trustix.org/errata/2007/0024", }, ], schema_version: "1.4.0", severity: [], }
fkie_cve-2007-2683
Vulnerability from fkie_nvd
Published
2007-05-15 21:19
Modified
2025-04-09 00:30
Severity ?
Summary
Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via "&" characters in the GECOS field, which triggers the overflow during alias expansion.
References
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mutt:mutt:1.4.2:*:*:*:*:*:*:*", matchCriteriaId: "7A0CD218-AA09-49B0-A87B-7FC04FF54500", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"&\" characters in the GECOS field, which triggers the overflow during alias expansion.", }, { lang: "es", value: "Desbordamiento de búfer en Mutt 1.4.2 podría permitir a usuarios locales ejecutar código de su elección mediante caracteres \"&\" en el campo GECOS, lo cual dispara el desbordamiento durante una expansión de alias.", }, ], id: "CVE-2007-2683", lastModified: "2025-04-09T00:30:58.490", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "LOW", cvssData: { accessComplexity: "HIGH", accessVector: "LOCAL", authentication: "SINGLE", availabilityImpact: "PARTIAL", baseScore: 3.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:L/AC:H/Au:S/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 1.5, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: true, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2007-05-15T21:19:00.000", references: [ { source: "cve@mitre.org", url: "http://dev.mutt.org/trac/ticket/2885", }, { source: "cve@mitre.org", url: "http://osvdb.org/34973", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/25408", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/25515", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/25529", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/25546", }, { source: "cve@mitre.org", url: "http://secunia.com/advisories/26415", }, { source: "cve@mitre.org", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113", }, { source: "cve@mitre.org", url: "http://www.redhat.com/support/errata/RHSA-2007-0386.html", }, { source: "cve@mitre.org", url: "http://www.securityfocus.com/bid/24192", }, { source: "cve@mitre.org", url: "http://www.securitytracker.com/id?1018066", }, { source: "cve@mitre.org", url: "http://www.trustix.org/errata/2007/0024/", }, { source: "cve@mitre.org", url: "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890", }, { source: "cve@mitre.org", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441", }, { source: "cve@mitre.org", url: "https://issues.rpath.com/browse/RPL-1391", }, { source: "cve@mitre.org", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://dev.mutt.org/trac/ticket/2885", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://osvdb.org/34973", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/25408", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/25515", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/25529", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/25546", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://secunia.com/advisories/26415", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.redhat.com/support/errata/RHSA-2007-0386.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/bid/24192", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securitytracker.com/id?1018066", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.trustix.org/errata/2007/0024/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://issues.rpath.com/browse/RPL-1391", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543", }, ], sourceIdentifier: "cve@mitre.org", vendorComments: [ { comment: "Updates for Red Hat Enterprise Linux are available from\nhttp://rhn.redhat.com/errata/RHSA-2007-0386.html", lastModified: "2007-06-04T00:00:00", organization: "Red Hat", }, ], vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.