CVE-2020-14093

Published: 15 June 2020

Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response.

Priority

CVSS 3 base score: 5.9

Status

Package	Release	Status
mutt Launchpad, Ubuntu, Debian	bionic	Released (1.9.4-3ubuntu0.2)
	eoan	Released (1.10.1-2.1ubuntu0.1)
	focal	Released (1.13.2-1ubuntu0.1)
	precise	Released (1.5.21-5ubuntu2.4)
	trusty	Does not exist
	upstream	Needs triage
	xenial	Released (1.5.24-1ubuntu0.3)

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.