CVE-2008-5514

EPSS 0.81%

Published: 12/23/2008Modified: 4/28/2026

Also known as:DEBIAN-CVE-2008-5514

Description

Off-by-one error in the rfc822_output_char function in the RFC822BUFFER routines in the University of Washington (UW) c-client library, as used by the UW IMAP toolkit before imap-2007e and other applications, allows context-dependent attackers to cause a denial of service (crash) via an e-mail message that triggers a buffer overflow.

Affected packages (2)

Debian/alpinefrom 0, < 2.02-3.1
Debian/uw-imapfrom 0, < 2007b~dfsg-1.1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-5514