[Bug 1291933] Re: Missing security update for CVE-2014-0467
Marius Gedminas
marius at gedmin.as
Fri Mar 14 11:55:14 UTC 2014
There are now updates for all supported releases (except Trusty), and
this bug doesn't appear to have been necessary. Oh well.
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to mutt in Ubuntu.
https://bugs.launchpad.net/bugs/1291933
Title:
Missing security update for CVE-2014-0467
Status in “mutt” package in Ubuntu:
Confirmed
Bug description:
I recently saw a Debian security update for Mutt:
http://www.debian.org/security/2014/dsa-2874. I do not see a
corresponding Ubuntu update yet. http://people.canonical.com/~ubuntu-
security/cve/2014/CVE-2014-0467.html claims one is needed.
This bug allows remote code execution, so is pretty serious. Mutt is
in main, so I hope Canonical will fix this soonish? Please?
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/mutt/+bug/1291933/+subscriptions
More information about the foundations-bugs
mailing list