Home / os / linux

Mutt mutt_decode_uuencoded() Memory Disclosure

Posted on 11 July 2022

In mutt_decode_uuencoded(), the line length is read from the untrusted uuencoded part without validation. This could result in including private memory in replys, for example fragments of other messages, passphrases or keys.

 

TOP