Search for packages
| purl | pkg:deb/debian/neomutt@20220429%2Bdfsg1-4.1 |
| Next non-vulnerable version | 20250510+dfsg-2~bpo12+1 |
| Latest non-vulnerable version | 20250510+dfsg-2~bpo12+1 |
| Risk | 3.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-fghw-2zx6-x3fk
Aliases: CVE-2024-49393 |
In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-qesx-tb3p-kuhx
Aliases: CVE-2024-49394 |
In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse an unencrypted but signed email message to impersonate the original sender. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-gh2y-b6qd-aaas | Buffer Overflow in uudecoder in Mutt affecting all versions starting from 0.94.13 before 2.2.3 allows read past end of input line |
CVE-2022-1328
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T10:16:59.730015+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | None | 36.1.3 |
| 2025-06-21T01:26:06.282778+00:00 | Debian Importer | Affected by | VCID-fghw-2zx6-x3fk | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-20T23:10:40.118891+00:00 | Debian Importer | Affected by | VCID-qesx-tb3p-kuhx | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-20T21:47:31.709452+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-04-05T07:33:18.966397+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | None | 36.0.0 |
| 2025-04-04T04:10:29.181095+00:00 | Debian Importer | Affected by | VCID-fghw-2zx6-x3fk | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-04T01:50:43.403015+00:00 | Debian Importer | Affected by | VCID-qesx-tb3p-kuhx | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-04T00:25:04.890981+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-02-22T04:34:49.519141+00:00 | Debian Importer | Affected by | VCID-qesx-tb3p-kuhx | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-22T04:34:43.003350+00:00 | Debian Importer | Affected by | VCID-fghw-2zx6-x3fk | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-20T14:20:00.786504+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | None | 35.1.0 |
| 2025-02-20T14:19:58.099997+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2024-11-24T13:55:58.951980+00:00 | Debian Importer | Affected by | VCID-qesx-tb3p-kuhx | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-24T13:55:57.578335+00:00 | Debian Importer | Affected by | VCID-fghw-2zx6-x3fk | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-23T07:29:22.238389+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-10-10T05:45:51.563235+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-09-19T12:29:41.342152+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-04-25T09:51:18.731584+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-25T09:51:13.778866+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | None | 34.0.0rc4 |
| 2024-01-11T11:47:32.666255+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc2 |
| 2024-01-11T11:47:27.609437+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | None | 34.0.0rc2 |
| 2024-01-04T21:39:31.118562+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc1 |
| 2024-01-04T21:39:25.779558+00:00 | Debian Importer | Fixing | VCID-gh2y-b6qd-aaas | None | 34.0.0rc1 |