VulnerableCode Package Details - pkg:deb/debian/claws-mail@3.11.1-3%2Bdeb8u1

Search for packages

Vulnerability	Summary	Fixed by
VCID-6bx3-z5a9-vya5 Aliases: CVE-2020-16094	In imap_scan_tree_recursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree.	3.17.8-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-921b-k4tj-k7gk Aliases: CVE-2015-8708	Multiple vulnerabilities have been found in claws-mail, particularly in the default SSL implementation.	3.14.1-1~bpo8+1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-eqpn-zwjp-rkdf Aliases: CVE-2020-15917	A vulnerability was discovered in Claws Mail's STARTTLS handling, possibly allowing an integrity/confidentiality compromise.	3.17.8-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-vpby-tpg2-wygr Aliases: CVE-2015-8614	Multiple vulnerabilities have been found in claws-mail, particularly in the default SSL implementation.	3.14.1-1~bpo8+1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-6bx3-z5a9-vya5
Aliases:
CVE-2020-16094

In imap_scan_tree_recursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree.

3.17.8-1
Affected by 1 other vulnerability.

VCID-921b-k4tj-k7gk
Aliases:
CVE-2015-8708

Multiple vulnerabilities have been found in claws-mail, particularly in the default SSL implementation.

3.14.1-1~bpo8+1
Affected by 2 other vulnerabilities.

VCID-eqpn-zwjp-rkdf
Aliases:
CVE-2020-15917

A vulnerability was discovered in Claws Mail's STARTTLS handling, possibly allowing an integrity/confidentiality compromise.

3.17.8-1
Affected by 1 other vulnerability.

VCID-vpby-tpg2-wygr
Aliases:
CVE-2015-8614

Multiple vulnerabilities have been found in claws-mail, particularly in the default SSL implementation.

3.14.1-1~bpo8+1
Affected by 2 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-vpby-tpg2-wygr	Multiple vulnerabilities have been found in claws-mail, particularly in the default SSL implementation.	CVE-2015-8614

Vulnerability

Summary

Aliases

VCID-vpby-tpg2-wygr

Multiple vulnerabilities have been found in claws-mail, particularly in the default SSL implementation.

CVE-2015-8614

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:05:02.649934+00:00	Debian Oval Importer	Affected by	VCID-6bx3-z5a9-vya5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:14:44.074815+00:00	Debian Oval Importer	Affected by	VCID-921b-k4tj-k7gk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:30:46.195117+00:00	Debian Oval Importer	Affected by	VCID-vpby-tpg2-wygr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:11:50.980418+00:00	Debian Oval Importer	Affected by	VCID-eqpn-zwjp-rkdf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T13:25:20.528528+00:00	Debian Oval Importer	Fixing	VCID-vpby-tpg2-wygr	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-11T23:39:05.662148+00:00	Debian Oval Importer	Affected by	VCID-6bx3-z5a9-vya5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:50:28.866063+00:00	Debian Oval Importer	Affected by	VCID-921b-k4tj-k7gk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:15:38.094341+00:00	Debian Oval Importer	Affected by	VCID-vpby-tpg2-wygr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:59:17.030947+00:00	Debian Oval Importer	Affected by	VCID-eqpn-zwjp-rkdf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T13:14:04.089446+00:00	Debian Oval Importer	Fixing	VCID-vpby-tpg2-wygr	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-08T23:11:37.024507+00:00	Debian Oval Importer	Affected by	VCID-6bx3-z5a9-vya5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:25:03.091418+00:00	Debian Oval Importer	Affected by	VCID-921b-k4tj-k7gk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:01:51.477977+00:00	Debian Oval Importer	Affected by	VCID-vpby-tpg2-wygr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:52:22.650782+00:00	Debian Oval Importer	Affected by	VCID-eqpn-zwjp-rkdf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T13:13:19.699442+00:00	Debian Oval Importer	Fixing	VCID-vpby-tpg2-wygr	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0