rpm package
opensuse/procmail&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/procmail&distro=openSUSE%20Tumbleweed
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-16844 | Cri | 9.8 | < 3.22-277.3 | 3.22-277.3 | Nov 16, 2017 | Heap-based buffer overflow in the loadbuf function in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted e-mail message because of a hardcoded realloc size, a different vu | |
| CVE-2014-3618 | — | < 3.22-270.9 | 3.22-270.9 | Sep 8, 2014 | Heap-based buffer overflow in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted email header, related to "unbalanced quotes." |
- affected < 3.22-277.3fixed 3.22-277.3
Heap-based buffer overflow in the loadbuf function in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted e-mail message because of a hardcoded realloc size, a different vu
- CVE-2014-3618Sep 8, 2014affected < 3.22-270.9fixed 3.22-270.9
Heap-based buffer overflow in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted email header, related to "unbalanced quotes."