VulnerableCode Package Details - pkg:deb/debian/claws-mail@3.17.8-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-185b-3s2q-1ffu Aliases: CVE-2021-37746	textview_uri_security_check in textview.c in Claws Mail before 3.18.0, and Sylpheed through 3.7.0, does not have sufficient link checks before accepting a click.	4.1.1-2 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-185b-3s2q-1ffu
Aliases:
CVE-2021-37746

textview_uri_security_check in textview.c in Claws Mail before 3.18.0, and Sylpheed through 3.7.0, does not have sufficient link checks before accepting a click.

4.1.1-2
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-6bx3-z5a9-vya5	In imap_scan_tree_recursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree.	CVE-2020-16094
VCID-eqpn-zwjp-rkdf	A vulnerability was discovered in Claws Mail's STARTTLS handling, possibly allowing an integrity/confidentiality compromise.	CVE-2020-15917

Vulnerability

Summary

Aliases

VCID-6bx3-z5a9-vya5

In imap_scan_tree_recursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree.

CVE-2020-16094

VCID-eqpn-zwjp-rkdf

A vulnerability was discovered in Claws Mail's STARTTLS handling, possibly allowing an integrity/confidentiality compromise.

CVE-2020-15917

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-01T22:13:34.490577+00:00	Debian Importer	Affected by	VCID-185b-3s2q-1ffu	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-04-16T12:19:08.748418+00:00	Debian Importer	Affected by	VCID-185b-3s2q-1ffu	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T00:05:02.664197+00:00	Debian Oval Importer	Fixing	VCID-6bx3-z5a9-vya5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:11:51.002944+00:00	Debian Oval Importer	Fixing	VCID-eqpn-zwjp-rkdf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-13T08:25:34.951740+00:00	Debian Importer	Affected by	VCID-185b-3s2q-1ffu	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T23:39:05.678199+00:00	Debian Oval Importer	Fixing	VCID-6bx3-z5a9-vya5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:59:17.047063+00:00	Debian Oval Importer	Fixing	VCID-eqpn-zwjp-rkdf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:11:37.045386+00:00	Debian Oval Importer	Fixing	VCID-6bx3-z5a9-vya5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:52:22.680797+00:00	Debian Oval Importer	Fixing	VCID-eqpn-zwjp-rkdf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-02T17:14:28.018821+00:00	Debian Importer	Affected by	VCID-185b-3s2q-1ffu	https://security-tracker.debian.org/tracker/data/json	38.1.0