Search for packages
| purl | pkg:deb/debian/fetchmail@6.3.26-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-67up-vtns-aaak
Aliases: CVE-2021-36386 |
report_vbuild in report.c in Fetchmail before 6.4.20 sometimes omits initialization of the vsnprintf va_list argument, which might allow mail servers to cause a denial of service or possibly have unspecified other impact via long error messages. NOTE: it is unclear whether use of Fetchmail on any realistic platform results in an impact beyond an inconvenience to the client user. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-62nh-5871-aaar | Fetchmail 5.0.8 through 6.3.21, when using NTLM authentication in debug mode, allows remote NTLM servers to (1) cause a denial of service (crash and delayed delivery of inbound mail) via a crafted NTLM response that triggers an out-of-bounds read in the base64 decoder, or (2) obtain sensitive information from memory via an NTLM Type 2 message with a crafted Target Name structure, which triggers an out-of-bounds read. |
CVE-2012-3482
|
| VCID-dqer-jfgw-aaaq | fetchmail 5.9.9 through 6.3.19 does not properly limit the wait time after issuing a (1) STARTTLS or (2) STLS request, which allows remote servers to cause a denial of service (application hang) by acknowledging the request but not sending additional packets. |
CVE-2011-1947
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:11:01.362734+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T16:21:40.390941+00:00 | Debian Oval Importer | Fixing | VCID-62nh-5871-aaar | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T11:31:27.889849+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T05:26:48.816081+00:00 | Debian Oval Importer | Affected by | VCID-67up-vtns-aaak | None | 36.1.3 |
| 2025-06-20T23:35:35.883761+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | None | 36.1.3 |
| 2025-06-20T22:29:12.991897+00:00 | Debian Oval Importer | Fixing | VCID-62nh-5871-aaar | None | 36.1.3 |
| 2025-06-08T12:25:11.302047+00:00 | Debian Oval Importer | Affected by | VCID-67up-vtns-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:19:51.176991+00:00 | Debian Oval Importer | Fixing | VCID-62nh-5871-aaar | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:39:55.172117+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T09:07:48.488712+00:00 | Debian Oval Importer | Fixing | VCID-62nh-5871-aaar | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T04:51:22.858057+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T23:04:33.566232+00:00 | Debian Oval Importer | Affected by | VCID-67up-vtns-aaak | None | 36.1.0 |
| 2025-06-07T16:58:32.766270+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | None | 36.1.0 |
| 2025-06-07T15:53:23.949406+00:00 | Debian Oval Importer | Fixing | VCID-62nh-5871-aaar | None | 36.1.0 |
| 2025-04-12T18:11:19.564705+00:00 | Debian Oval Importer | Affected by | VCID-67up-vtns-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:05:46.791852+00:00 | Debian Oval Importer | Fixing | VCID-62nh-5871-aaar | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:24:36.052290+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T07:39:37.386023+00:00 | Debian Oval Importer | Fixing | VCID-62nh-5871-aaar | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:22:33.061702+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T21:36:40.098122+00:00 | Debian Oval Importer | Affected by | VCID-67up-vtns-aaak | None | 36.0.0 |
| 2025-04-07T15:31:40.602170+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | None | 36.0.0 |
| 2025-04-07T14:24:19.039393+00:00 | Debian Oval Importer | Fixing | VCID-62nh-5871-aaar | None | 36.0.0 |
| 2024-11-29T04:22:12.125290+00:00 | Debian Oval Importer | Fixing | VCID-62nh-5871-aaar | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-28T07:22:37.599719+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-10-14T11:29:25.239399+00:00 | Debian Oval Importer | Fixing | VCID-62nh-5871-aaar | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-13T20:01:31.897197+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-09-21T09:00:35.840768+00:00 | Debian Oval Importer | Fixing | VCID-62nh-5871-aaar | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-21T02:30:09.845146+00:00 | Debian Oval Importer | Fixing | VCID-dqer-jfgw-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |