Critical severity9.8NVD Advisory· Published Jul 23, 2020· Updated Jun 17, 2026
CVE-2020-15917
CVE-2020-15917
Description
common/session.c in Claws Mail before 3.17.6 has a protocol violation because suffix data after STARTTLS is mishandled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9- Claws Mail/Claws Maildescription
- Range: <3.17.6
- osv-coords7 versionspkg:rpm/opensuse/claws-mail&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/claws-mail&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/claws-mail&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/claws-mail&distro=openSUSE%20Tumbleweedpkg:rpm/suse/claws-mail&distro=SUSE%20Package%20Hub%2015%20SP1pkg:rpm/suse/claws-mail&distro=SUSE%20Package%20Hub%2015%20SP2pkg:rpm/suse/claws-mail&distro=SUSE%20Package%20Hub%2015%20SP3
< 3.17.3-lp151.2.3.1+ 6 more
- (no CPE)range: < 3.17.3-lp151.2.3.1
- (no CPE)range: < 3.17.6-lp152.3.3.1
- (no CPE)range: < 3.18.0-bp153.2.3.1
- (no CPE)range: < 4.0.0-2.5
- (no CPE)range: < 3.17.8-bp152.3.6.1
- (no CPE)range: < 3.17.8-bp152.3.6.1
- (no CPE)range: < 3.18.0-bp153.2.3.1
Patches
Vulnerability mechanics
References
9- lists.opensuse.org/opensuse-security-announce/2020-07/msg00090.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2020-08/msg00002.htmlnvdBroken LinkMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2020-08/msg00060.htmlnvdBroken LinkMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2020-09/msg00051.htmlnvdBroken LinkMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2020-11/msg00013.htmlnvdBroken LinkMailing ListThird Party Advisory
- security.gentoo.org/glsa/202007-56nvdThird Party Advisory
- git.claws-mail.orgnvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6YVQB7NRBHO67Q74RS7RZCMW4ENRVBB4/nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/G7UX65342HRVDQML4G4GEVEUB764EUM5/nvd
News mentions
0No linked articles in our index yet.