Headline
CVE-2021-44143: Isync / isync
A flaw was found in mbsync in isync 1.4.0 through 1.4.3. Due to an unchecked condition, a malicious or compromised IMAP server could use a crafted mail message that lacks headers (i.e., one that starts with an empty line) to provoke a heap overflow, which could conceivably be exploited for remote code execution.
Help Create Join Login
Open Source Software
Business Software
Resources
- Blog
- Articles
Menu
Help
Create
Join
Login
Home
Browse
Isync
isync
mailbox synchronizer
Brought to you by: ossi
- Summary
- Files
- Reviews
- Support
- Mailing Lists
- Tickets ▾
- Bugs
- Patches
- Feature Requests
- Git ▾
- isync
- www
Menu ▾ ▴
- Browse Commits
- Fork
- Merge Requests 1
- Forks 8
Branches
- master
- 0.9
- 1.0
- 1.1
- 1.2
- 1.3
- 1.4
- wip/INBOX-patterns-prefixing
- wip/better-stderr
- wip/debug-various
- More Branches
Tags
- v0.1
- v0.2
- v0.3
- v0.4
- v0.5
- v0.6
- v0.7
- v0.8
- v1.0.0
- v1.0.1
- More Tags
Browse Commits
Loading commits…
Oh no! Some styles failed to load. 😵 Please try reloading this page
Related news
Gentoo Linux Security Advisory 202208-15 - Multiple vulnerabilities have been discovered in isync, the worst of which could result in arbitrary code execution. Versions less than 1.4.4 are affected.