CVE-2014-3618

EPSS 9.8%

procmail - security update

發布日:2014/9/8修改日:2026/4/28

也稱為:DEBIAN-CVE-2014-3618

描述

Heap-based buffer overflow in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted email header, related to "unbalanced quotes."

受影響套件(3)

Debian/procmailfrom 0, < 3.22-22
Debian/procmailfrom 0, < 3.22-19+deb6u1
Debian/procmailfrom 0, < 3.22-20+deb7u1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-3618