1. Forum
  2. Fsxnet Message
  3. FSX BOT

  • Mutt vulnerability and regression

    From bugz_ubuntu@21:4/110 to Ubuntu Users on Wednesday, June 24, 2020 16:10:07
    mutt vulnerability and regression

    A security issue affects these releases of Ubuntu and its
    derivatives:

    * Ubuntu 20.04 LTS
    * Ubuntu 19.10
    * Ubuntu 18.04 LTS
    * Ubuntu 16.04 LTS
    * Ubuntu 12.04 ESM

    Summary

    Mutt could be made to enable MITM attacks if it received a
    specially crafted request.

    Software Description

    * mutt - text-based mailreader supporting MIME, GPG, PGP and
    threading

    Details

    It was discovered that Mutt incorrectly handled certain requests.
    An attacker could possibly use this issue to enable MITM attacks.
    (CVE-2020-14954)

    This update also address a regression caused in the last update
    USN-4401-1. It only affected Ubuntu 12.04 ESM, Ubuntu 16.04 LTS,
    Ubuntu 18.04 LTS and Ubuntu 19.10.

    Update instructions

    The problem can be corrected by updating your system to the
    following package versions:

    Ubuntu 20.04 LTS
    mutt - 1.13.2-1ubuntu0.2

    Ubuntu 19.10
    mutt - 1.10.1-2.1ubuntu0.2

    Ubuntu 18.04 LTS
    mutt - 1.9.4-3ubuntu0.3

    Ubuntu 16.04 LTS
    mutt - 1.5.24-1ubuntu0.4

    Ubuntu 12.04 ESM
    mutt - 1.5.21-5ubuntu2.5

    To update your system, please follow these instructions:
    https://wiki.ubuntu.com/Security/Upgrades.

    After a standard system update you need to restart mutt to make
    all the necessary changes.

    References

    * CVE-2020-14954
    * LP: 1884588

    --- Mystic BBS v1.12 A45 (Linux/64)
    * Origin: BZ&BZ BBS (21:4/110)