Your submission was sent successfully! Close

USN-373-1: mutt vulnerabilities

1 November 2006

mutt vulnerabilities



Race conditions were discovered in mutt's handling of temporary files.
Under certain conditions when using a shared temp directory (the
default), other local users could overwrite arbitrary files owned by the
user running mutt. This vulnerability is more likely when the temp
directory is over NFS.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 6.10
  • mutt - 1.5.12-1ubuntu1.1
Ubuntu 6.06
  • mutt - 1.5.11-3ubuntu2.2
Ubuntu 5.10
  • mutt - 1.5.9-2ubuntu1.2

After a standard system upgrade you need to restart mutt to effect the
necessary changes.