QID 354118

Date Published: 2022-12-08

QID 354118: Amazon Linux Security Advisory for mutt : ALAS2-2022-1892

Mutt before 1.14.3 allows an imap fcc/postpone man-in-the-middle attack via a preauth response. (
( CVE-2020-14093) mutt before 1.14.3 proceeds with a connection even if, in response to a gnutls certificate prompt, the user rejects an expired intermediate certificate. (
( CVE-2020-14154) mutt before 1.14.4 and neomutt before 2020-06-19 have a starttls buffering issue that affects imap, smtp, and pop3.
When a server sends a "begin tls" response, the client reads additional data (e.g., from a man-in-the-middle attacker) and evaluates it in a tls context, aka "response injection." (
( CVE-2020-14954) mutt before 2.0.2 and neomutt before 2020-11-20 did not ensure that was processed if an imap server's initial server response was invalid.
The connection was not properly closed, and the code could continue attempting to authenticate.
This could result in authentication credentials being exposed on an unencrypted connection, or to a machine-in-the-middle. (
( CVE-2020-28896) rfc822.c in mutt through 2.0.4 allows remote attackers to cause a denial of service (mailbox unavailability) by sending email messages with sequences of semicolon characters in rfc822 address fields (aka terminators of empty groups).
A small email message from the attacker can cause large memory consumption, and the victim may then be unable to see email messages from other persons. (
( CVE-2021-3181) a flaw was found in mutt.
When reading unencoded messages, mutt uses the line length from the untrusted input without any validation.
This flaw allows an attacker to craft a malicious message, which leads to an out-of-bounds read, causing data leaks that include fragments of other unrelated messages. (
( CVE-2022-1328)

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Successful exploitation of this vulnerability could lead to a securitybreach or could affect integrity, availability, and confidentiality.

CVSS V3 rated as High - 6.5 severity.

CVSS V2 rated as Medium - 5.8 severity.

Solution

Please refer to Amazon advisory: ALAS2-2022-1892 for affected packages and patching details, or update with your package manager.

Vendor References

ALAS2-2022-1892 - alas.aws.amazon.com/AL2/ALAS-2022-1892.html

CVEs related to QID 354118

CVE-2022-1328 | CVE-2020-14954 | CVE-2020-28896 | CVE-2021-3181 | CVE-2020-14093 | CVE-2020-14154 |

Software Advisories

Advisory ID	Software	Component	Link
ALAS2-2022-1892	Amazon Linux 2		alas.aws.amazon.com/AL2/ALAS-2022-1892.html

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].