VulnerableCode Package Details - pkg:deb/debian/claws-mail@3.14.1-1~bpo8%2B1

Search for packages

Vulnerability	Summary	Fixed by
VCID-6bx3-z5a9-vya5 Aliases: CVE-2020-16094	In imap_scan_tree_recursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree.	3.17.8-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-eqpn-zwjp-rkdf Aliases: CVE-2020-15917	A vulnerability was discovered in Claws Mail's STARTTLS handling, possibly allowing an integrity/confidentiality compromise.	3.17.8-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-6bx3-z5a9-vya5
Aliases:
CVE-2020-16094

In imap_scan_tree_recursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree.

3.17.8-1
Affected by 1 other vulnerability.

VCID-eqpn-zwjp-rkdf
Aliases:
CVE-2020-15917

A vulnerability was discovered in Claws Mail's STARTTLS handling, possibly allowing an integrity/confidentiality compromise.

3.17.8-1
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
VCID-921b-k4tj-k7gk	Multiple vulnerabilities have been found in claws-mail, particularly in the default SSL implementation.	CVE-2015-8708
VCID-vpby-tpg2-wygr	Multiple vulnerabilities have been found in claws-mail, particularly in the default SSL implementation.	CVE-2015-8614

Vulnerability

Summary

Aliases

VCID-921b-k4tj-k7gk

Multiple vulnerabilities have been found in claws-mail, particularly in the default SSL implementation.

CVE-2015-8708

VCID-vpby-tpg2-wygr

Multiple vulnerabilities have been found in claws-mail, particularly in the default SSL implementation.

CVE-2015-8614

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:05:02.653518+00:00	Debian Oval Importer	Affected by	VCID-6bx3-z5a9-vya5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:14:44.078224+00:00	Debian Oval Importer	Fixing	VCID-921b-k4tj-k7gk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:30:46.199259+00:00	Debian Oval Importer	Fixing	VCID-vpby-tpg2-wygr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:11:50.983994+00:00	Debian Oval Importer	Affected by	VCID-eqpn-zwjp-rkdf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-11T23:39:05.666167+00:00	Debian Oval Importer	Affected by	VCID-6bx3-z5a9-vya5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:50:28.870227+00:00	Debian Oval Importer	Fixing	VCID-921b-k4tj-k7gk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:15:38.098228+00:00	Debian Oval Importer	Fixing	VCID-vpby-tpg2-wygr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:59:17.035042+00:00	Debian Oval Importer	Affected by	VCID-eqpn-zwjp-rkdf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:11:37.029515+00:00	Debian Oval Importer	Affected by	VCID-6bx3-z5a9-vya5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:25:03.096140+00:00	Debian Oval Importer	Fixing	VCID-921b-k4tj-k7gk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:01:51.482530+00:00	Debian Oval Importer	Fixing	VCID-vpby-tpg2-wygr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:52:22.656425+00:00	Debian Oval Importer	Affected by	VCID-eqpn-zwjp-rkdf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0