Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Mageia 9: MGASA-2025-0070 critical: neomutt email header signing issues

mageia
Calendar Grey February 24, 2025
Dist Mageia Esm H88
Newly released neomutt updates address problems with email header management and enhance cryptographic signing capabilities, effective on February 24, 2025.
The To and Cc email header fields are not protected by cryptographic signing

Summary

The To and Cc email header fields are not protected by cryptographic signing. (CVE-2024-49393) The In-reply-to email header field is not protected by cryptographic signing. (CVE-2024-49394)

References

- https://bugs.mageia.org/show_bug.cgi?id=33814

-

- https://www.cve.org/CVERecord?id=CVE-2024-49393

- https://www.cve.org/CVERecord?id=CVE-2024-49394

Resolution

SRPMS

- 9/core/neomutt-20241002-1.mga9

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 24 Feb 2025
URL: https://advisories.mageia.org/MGASA-2025-0070.html
Type: security
CVE: CVE-2024-49393, CVE-2024-49394

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here