Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

openSUSE Backports SLE-15-SP4: 2022:10020-1 Moderate: Neomutt Buffer Issue

opensuse
Calendar Grey June 21, 2022
Dist Opensuse Esm H88
A critical patch for neomutt on openSUSE resolves several serious security flaws and improves safeguards.
An update that fixes two vulnerabilities is now available

Description

This update for neomutt fixes the following issues:

neomutt was updated to 20220429:

* Bug Fixes

* Do not crash on an invalid use_threads/sort combination

* Fix: stuck browser cursor

* Resolve (move) the cursor after

* Index: fix menu size on new mail

* Don't overlimit LMDB mmap size

* OpenBSD y/n translation fix

* Generic: split out OP_EXIT binding

* Fix parsing of sendmail cmd

* Fix: crash with menu_move_off=no

* Newsrc: bugfix; nntp_user and nntp_pass ignored

* Menu: ensure config changes cause a repaint

* Mbox: fix sync duplicates

* Make sure the index redraws all that's needed

* Translations

* 100% Chinese (Simplified)

* 100% Czech

* 100% German

* 100% Hungarian

* 100% Lithuanian

* 100% Serbian

* 100% Turkish

* Docs

* add missing pattern modifier ~I for external_search_command

* Code

* menu: eliminate custom_redraw()

* modernise mixmaster

* Kill global and Propagate display attach status...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory moderate update buffer overflow email client openSUSE neomutt

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Backports SLE-15-SP4:

zypper in -t patch openSUSE-2022-10020=1

Package List

- openSUSE Backports SLE-15-SP4 (aarch64 ppc64le s390x x86_64):

neomutt-20220429-bp154.2.3.1

- openSUSE Backports SLE-15-SP4 (noarch):

neomutt-doc-20220429-bp154.2.3.1

neomutt-lang-20220429-bp154.2.3.1

References

https://www.suse.com/security/cve/CVE-2021-32055.html

https://www.suse.com/security/cve/CVE-2022-1328.html

https://bugzilla.suse.com/1184787

https://bugzilla.suse.com/1185705

Announcement ID: openSUSE-SU-2022:10020-1
Rating: moderate
Affected Products: openSUSE Backports SLE-15-SP4 .

Topics%20covered

Topics Covered

security advisory moderate update buffer overflow email client openSUSE neomutt

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here