VulnerableCode Package Details - pkg:deb/debian/fetchmail@6.2.5-12sarge5

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/fetchmail@6.2.5-12sarge5

Essentials
History (57)

purl	pkg:deb/debian/fetchmail@6.2.5-12sarge5

Next non-vulnerable version	6.6.3-2
Latest non-vulnerable version	6.6.3-2
Risk	3.5

Vulnerabilities affecting this package (15)

Vulnerability	Summary	Fixed by
VCID-97ss-zfpr-y3ay Aliases: CVE-2021-36386	Multiple vulnerabilities have been discovered in Fetchmail, the worst of which could result in email disclosure to third parties.	6.4.16-4+deb11u1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-9gws-7t3w-vfcd Aliases: CVE-2006-5974	Fetchmail has been found to have numerous vulnerabilities allowing for Denial of Service and password disclosure.	6.3.6-1 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-a1kd-nrb9-1ude Aliases: CVE-2012-3482	fetchmail: DoS (crash) in the base64 decoder upon server NTLM protocol exchange abort right after the initial request	6.3.26-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-bdjg-4neb-bkcv Aliases: CVE-2007-4565	Fetchmail NULL pointer dereference	6.3.9~rc2-4+lenny2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-cfr6-vv1d-bked Aliases: CVE-2006-0321	fetchmail 6.3.0 and other versions before 6.3.2 allows remote attackers to cause a denial of service (crash) via crafted e-mail messages that cause a free of an invalid pointer when fetchmail bounces the message to the originator or local postmaster.	6.3.6-1 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-f1e2-8yyj-myhy Aliases: CVE-2005-2335	security flaw	6.3.6-1 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-kbbh-df65-eycb Aliases: CVE-2010-1167	fetchmail: denial of service in debug mode with multichar locales	6.3.18-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-qu87-w65w-1uaw Aliases: CVE-2011-1947	fetchmail: Application hang due unguarded blocking I/O in IMAP/POP3 STARTTLS initialization (fetchmail-SA-2011-01)	6.3.26-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-sdjv-h2g3-kyde Aliases: CVE-2005-3088	fetchmailconf fails to properly handle file permissions, temporarily exposing sensitive information to other local users.	6.3.6-1 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-svpq-cfxf-1bd6 Aliases: CVE-2008-2711	fetchmail: Crash in large log messages in verbose mode	6.3.9~rc2-4+lenny2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-tajk-fm27-m7ap Aliases: CVE-2009-2666	Multiple vulnerabilities have been reported in Fetchmail, allowing remote attackers to execute arbitrary code or to conduct Man-in-the-Middle attacks.	6.3.18-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-tmpb-ebwe-17dt Aliases: CVE-2006-5867	Fetchmail has been found to have numerous vulnerabilities allowing for Denial of Service and password disclosure.	6.3.6-1 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ukjn-pbdj-u3e3 Aliases: CVE-2007-1558	Multiple vulnerabilities have been reported in Mozilla Firefox, Thunderbird, SeaMonkey and XULRunner, some of which may allow user-assisted arbitrary remote code execution.	6.3.9~rc2-4+lenny2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-v9w5-w56e-ufgb Aliases: CVE-2010-0562	Multiple vulnerabilities have been reported in Fetchmail, allowing remote attackers to execute arbitrary code or to conduct Man-in-the-Middle attacks.	6.3.18-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-yrqx-bjhg-77e3 Aliases: CVE-2005-4348	security flaw	6.3.6-1 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (4)

Vulnerability	Summary	Aliases
VCID-4xxd-4tra-fqed	security flaw	CVE-2003-0792
VCID-hppt-d3w7-vucd	security flaw	CVE-2002-1365
VCID-jhhq-jwea-9kcg	security flaw	CVE-2002-1175
VCID-shz9-4rav-wqct	security flaw	CVE-2002-1174

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:05:19.159853+00:00	Debian Oval Importer	Affected by	VCID-svpq-cfxf-1bd6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:43:31.183007+00:00	Debian Oval Importer	Affected by	VCID-kbbh-df65-eycb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:29:08.183684+00:00	Debian Oval Importer	Affected by	VCID-tmpb-ebwe-17dt	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:20:10.195994+00:00	Debian Oval Importer	Affected by	VCID-ukjn-pbdj-u3e3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:39:53.915042+00:00	Debian Oval Importer	Affected by	VCID-v9w5-w56e-ufgb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:29:17.191140+00:00	Debian Oval Importer	Affected by	VCID-sdjv-h2g3-kyde	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:53:48.225834+00:00	Debian Oval Importer	Affected by	VCID-f1e2-8yyj-myhy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:57:23.791003+00:00	Debian Oval Importer	Fixing	VCID-jhhq-jwea-9kcg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:07:21.083136+00:00	Debian Oval Importer	Affected by	VCID-97ss-zfpr-y3ay	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:58:27.993123+00:00	Debian Oval Importer	Affected by	VCID-a1kd-nrb9-1ude	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:46:34.075909+00:00	Debian Oval Importer	Fixing	VCID-4xxd-4tra-fqed	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:43:43.320078+00:00	Debian Oval Importer	Affected by	VCID-tajk-fm27-m7ap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:21:56.736131+00:00	Debian Oval Importer	Affected by	VCID-bdjg-4neb-bkcv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:16:20.362460+00:00	Debian Oval Importer	Fixing	VCID-hppt-d3w7-vucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:08:42.738656+00:00	Debian Oval Importer	Affected by	VCID-9gws-7t3w-vfcd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:55:40.458024+00:00	Debian Oval Importer	Affected by	VCID-qu87-w65w-1uaw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:29:36.705005+00:00	Debian Oval Importer	Affected by	VCID-cfr6-vv1d-bked	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:28:15.554126+00:00	Debian Oval Importer	Fixing	VCID-shz9-4rav-wqct	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:47:08.194528+00:00	Debian Oval Importer	Affected by	VCID-yrqx-bjhg-77e3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-11T23:39:21.946073+00:00	Debian Oval Importer	Affected by	VCID-svpq-cfxf-1bd6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:18:15.179485+00:00	Debian Oval Importer	Affected by	VCID-kbbh-df65-eycb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:06:13.311271+00:00	Debian Oval Importer	Affected by	VCID-tmpb-ebwe-17dt	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:57:37.690266+00:00	Debian Oval Importer	Affected by	VCID-ukjn-pbdj-u3e3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:18:44.258208+00:00	Debian Oval Importer	Affected by	VCID-v9w5-w56e-ufgb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:10:42.529972+00:00	Debian Oval Importer	Affected by	VCID-sdjv-h2g3-kyde	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:35:55.792843+00:00	Debian Oval Importer	Affected by	VCID-f1e2-8yyj-myhy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:41:36.775935+00:00	Debian Oval Importer	Fixing	VCID-jhhq-jwea-9kcg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:52:57.347417+00:00	Debian Oval Importer	Affected by	VCID-97ss-zfpr-y3ay	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:44:19.326566+00:00	Debian Oval Importer	Affected by	VCID-a1kd-nrb9-1ude	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:32:32.161517+00:00	Debian Oval Importer	Fixing	VCID-4xxd-4tra-fqed	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:29:46.204540+00:00	Debian Oval Importer	Affected by	VCID-tajk-fm27-m7ap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:08:23.348949+00:00	Debian Oval Importer	Affected by	VCID-bdjg-4neb-bkcv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:02:52.548059+00:00	Debian Oval Importer	Fixing	VCID-hppt-d3w7-vucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:55:16.863409+00:00	Debian Oval Importer	Affected by	VCID-9gws-7t3w-vfcd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:42:21.738417+00:00	Debian Oval Importer	Affected by	VCID-qu87-w65w-1uaw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:16:44.306523+00:00	Debian Oval Importer	Affected by	VCID-cfr6-vv1d-bked	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:15:25.979959+00:00	Debian Oval Importer	Fixing	VCID-shz9-4rav-wqct	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:34:49.995222+00:00	Debian Oval Importer	Affected by	VCID-yrqx-bjhg-77e3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:11:53.512389+00:00	Debian Oval Importer	Affected by	VCID-svpq-cfxf-1bd6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:51:39.987746+00:00	Debian Oval Importer	Affected by	VCID-kbbh-df65-eycb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:43:04.205186+00:00	Debian Oval Importer	Affected by	VCID-tmpb-ebwe-17dt	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:34:51.530720+00:00	Debian Oval Importer	Affected by	VCID-ukjn-pbdj-u3e3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:57:29.725367+00:00	Debian Oval Importer	Affected by	VCID-v9w5-w56e-ufgb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:51:59.321893+00:00	Debian Oval Importer	Affected by	VCID-sdjv-h2g3-kyde	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:19:08.149585+00:00	Debian Oval Importer	Affected by	VCID-f1e2-8yyj-myhy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:26:44.269146+00:00	Debian Oval Importer	Fixing	VCID-jhhq-jwea-9kcg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:39:51.401252+00:00	Debian Oval Importer	Affected by	VCID-97ss-zfpr-y3ay	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:31:38.794283+00:00	Debian Oval Importer	Affected by	VCID-a1kd-nrb9-1ude	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:20:23.456054+00:00	Debian Oval Importer	Fixing	VCID-4xxd-4tra-fqed	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:17:43.796858+00:00	Debian Oval Importer	Affected by	VCID-tajk-fm27-m7ap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:57:32.332745+00:00	Debian Oval Importer	Affected by	VCID-bdjg-4neb-bkcv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:52:15.518453+00:00	Debian Oval Importer	Fixing	VCID-hppt-d3w7-vucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:45:01.932739+00:00	Debian Oval Importer	Affected by	VCID-9gws-7t3w-vfcd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:32:50.631076+00:00	Debian Oval Importer	Affected by	VCID-qu87-w65w-1uaw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:08:55.107169+00:00	Debian Oval Importer	Affected by	VCID-cfr6-vv1d-bked	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:07:41.856800+00:00	Debian Oval Importer	Fixing	VCID-shz9-4rav-wqct	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:28:54.107504+00:00	Debian Oval Importer	Affected by	VCID-yrqx-bjhg-77e3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0