Search for packages
Package details: pkg:deb/debian/fetchmail@6.3.26-3
purl pkg:deb/debian/fetchmail@6.3.26-3
Next non-vulnerable version 6.4.37-1
Latest non-vulnerable version 6.4.37-1
Risk 3.4
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-67up-vtns-aaak
Aliases:
CVE-2021-36386
report_vbuild in report.c in Fetchmail before 6.4.20 sometimes omits initialization of the vsnprintf va_list argument, which might allow mail servers to cause a denial of service or possibly have unspecified other impact via long error messages. NOTE: it is unclear whether use of Fetchmail on any realistic platform results in an impact beyond an inconvenience to the client user.
6.4.16-4+deb11u1
Affected by 1 other vulnerability.
VCID-jt9g-eg2s-aaap
Aliases:
CVE-2021-39272
Fetchmail before 6.4.22 fails to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH.
6.4.37-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T14:37:05.304292+00:00 Debian Importer Affected by VCID-jt9g-eg2s-aaap None 36.1.3
2025-06-21T05:26:48.818056+00:00 Debian Oval Importer Affected by VCID-67up-vtns-aaak None 36.1.3
2025-06-21T03:11:34.198860+00:00 Debian Importer Affected by VCID-67up-vtns-aaak None 36.1.3
2025-06-08T12:25:11.303629+00:00 Debian Oval Importer Affected by VCID-67up-vtns-aaak https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-07T23:04:33.568819+00:00 Debian Oval Importer Affected by VCID-67up-vtns-aaak None 36.1.0
2025-04-12T18:11:19.569790+00:00 Debian Oval Importer Affected by VCID-67up-vtns-aaak https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-07T21:36:40.103169+00:00 Debian Oval Importer Affected by VCID-67up-vtns-aaak None 36.0.0
2025-04-05T11:08:48.711966+00:00 Debian Importer Affected by VCID-jt9g-eg2s-aaap None 36.0.0
2025-04-04T05:59:00.549310+00:00 Debian Importer Affected by VCID-67up-vtns-aaak None 36.0.0
2025-02-20T05:15:47.725267+00:00 Debian Importer Affected by VCID-jt9g-eg2s-aaap None 35.1.0
2025-02-20T02:38:32.842130+00:00 Debian Importer Affected by VCID-67up-vtns-aaak None 35.1.0
2024-11-22T20:31:00.429931+00:00 Debian Importer Affected by VCID-67up-vtns-aaak None 35.0.0
2024-10-09T19:08:53.813751+00:00 Debian Importer Affected by VCID-67up-vtns-aaak None 34.0.2
2024-09-19T03:30:19.994570+00:00 Debian Importer Affected by VCID-67up-vtns-aaak None 34.0.1
2024-04-25T04:06:21.987938+00:00 Debian Importer Affected by VCID-jt9g-eg2s-aaap None 34.0.0rc4
2024-04-25T01:51:16.813644+00:00 Debian Importer Affected by VCID-67up-vtns-aaak None 34.0.0rc4
2024-01-11T05:32:46.067349+00:00 Debian Importer Affected by VCID-jt9g-eg2s-aaap None 34.0.0rc2
2024-01-11T02:59:41.626177+00:00 Debian Importer Affected by VCID-67up-vtns-aaak None 34.0.0rc2
2024-01-04T16:51:42.142240+00:00 Debian Importer Affected by VCID-jt9g-eg2s-aaap None 34.0.0rc1
2024-01-04T15:05:07.172509+00:00 Debian Importer Affected by VCID-67up-vtns-aaak None 34.0.0rc1