Headline
Ubuntu Security Notice USN-5392-1
Ubuntu Security Notice 5392-1 - It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this issue to expose sensitive information. This issue only affected Ubuntu 20.04 LTS. It was discovered that Mutt incorrectly handled certain input. An attacker could possibly use this issue to cause a crash, or expose sensitive information.
=========================================================================
Ubuntu Security Notice USN-5392-1
April 28, 2022
mutt vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 22.04 LTS
- Ubuntu 21.10
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 ESM
Summary:
Several security issues were fixed in Mutt.
Software Description:
- mutt: text-based mailreader supporting MIME, GPG, PGP and threading
Details:
It was discovered that Mutt incorrectly handled certain requests.
An attacker could possibly use this issue to expose sensitive information.
This issue only affected Ubuntu 20.04 LTS. (CVE-2021-32055)
It was discovered that Mutt incorrectly handled certain input.
An attacker could possibly use this issue to cause a crash,
or expose sensitive information. (CVE-2022-1328)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 22.04 LTS:
mutt 2.1.4-1ubuntu1.1
Ubuntu 21.10:
mutt 2.0.5-4.1ubuntu0.1
Ubuntu 20.04 LTS:
mutt 1.13.2-1ubuntu0.5
Ubuntu 18.04 LTS:
mutt 1.9.4-3ubuntu0.6
Ubuntu 16.04 ESM:
mutt 1.5.24-1ubuntu0.6+esm2
mutt-patched 1.5.24-1ubuntu0.6+esm2
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-5392-1
CVE-2021-32055, CVE-2022-1328
Package Information:
https://launchpad.net/ubuntu/+source/mutt/2.1.4-1ubuntu1.1
https://launchpad.net/ubuntu/+source/mutt/2.0.5-4.1ubuntu0.1
https://launchpad.net/ubuntu/+source/mutt/1.13.2-1ubuntu0.5
https://launchpad.net/ubuntu/+source/mutt/1.9.4-3ubuntu0.6