Fedora has issued an advisory on June 19: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/HFKINLAEILYIEVUIJEZJWTMS2OUJZBUD/ The issue is fixed upstream in 1.12.0.
Assigning to wally as both registered and actual maintainer.
Assignee: bugsquad => jani.valimaa
Status comment: (none) => Fixed upstream in 1.12.0
See Also: (none) => https://bugzilla.redhat.com/show_bug.cgi?id=1710397
Added an upstream patch [1] to fix the issue. Please test mutt-1.11.4-1.1.mga7 from core/updates_testing. [1] https://gitlab.com/muttmua/mutt/commit/3b6f6b829718ec8a7cf3eb6997d86e83e6c38567
See Also: (none) => http://bugs.debian.org/929017Assignee: jani.valimaa => qa-bugs
SRPMS: mutt-1.11.4-1.1.mga7 RPMS: mutt-1.11.4-1.1.mga7 mutt-doc-1.11.4-1.1.mga7
CC: (none) => jani.valimaa
Advisory: ======================== Updated mutt packages fix security vulnerability: Invalid format of RFC parameter passed to atoi() function in rfc2231.c could lead to unexpected behavior (rhbz#1710397, bdo#929017). References: https://bugzilla.redhat.com/show_bug.cgi?id=1710397 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929017
MGA7-64 Plasma on Lenovo B50 No installation issues. Found some info on the use of mutt at https://www.thegeekdiary.com/how-to-install-and-configure-mutt-in-centos-rhel/ Tried to use mutt to send an e-mail from my hotmail account to my gmail account, but got into trouble defining the smtp parameters MS seems to do something strange for "direct mail" Swapped around, sending from gmail to hotmail gets me a bt further but still I run into a problem I cannot solve right now: $ echo "" | mutt -s "testmutt" -i body.txt herman.viaene@hotmail.be Verbinding met smtp.gmail.com beëindigd (Connection closed) SMTP-sessie is mislukt: leesfout (smptp session failed: read error) Bericht kon niet verstuurd worden. (message could not be sent) The file body.txt used in the command just contains one line of plain text.
CC: (none) => herman.viaene
Sending this on the basis of a clean install. Validating. Advisory in Comment 4.
Whiteboard: (none) => MGA7-64-OKCC: (none) => andrewsfarm, sysadmin-bugsKeywords: (none) => validated_update
In case you're interested... one way you can do some amount of testing with mutt is to open any mailbox (look in /var/spool/mail) on your system that has something in it. Mine has... $ ll /var/spool/mail total 2128 -rw------- 1 apache mail 2304 Nov 2 2016 apache -rw------- 1 mrambo mail 1459 May 17 2019 mrambo -rw------- 1 postfix mail 2164679 Feb 14 04:02 postfix All three of those boxes contain something (the size will be 0 if it does not). You can read them with mutt. sudo mutt -f /var/spool/mail postfix You won't need sudo or have to become root if you own the mailbox you're opening. Once mutt opens you should be able to manipulate the mails in about any way short of replying to them since you probably won't have smtp set up yet. Anyway, this will at least enable you to see mutt do something with some mail.
CC: (none) => mrambo
Opps - that should be sudo mutt -f /var/spool/mail/postfix
CC: (none) => tmbKeywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2020-0086.html
Status: NEW => RESOLVEDResolution: (none) => FIXED