Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2021-37746

textview_uri_security_check in textview.c in Claws Mail before 3.18.0, and Sylpheed through 3.7.0, does not have sufficient link checks before accepting a click.

Related bugs and status

CVE-2021-37746 (Candidate) is related to these bugs:

Bug #1942927: claws-mail package outdated (security risk)

Summary				In	Importance	Status
	1942927	claws-mail package outdated (security risk)		claws-mail (Ubuntu)	Undecided	New
	1942927	claws-mail package outdated (security risk)		sylpheed (Ubuntu)	Undecided	New

See the

CVE page on Mitre.org for more details.

References

MISC: https://claws-mail.org...
MISC: https://git.claws-mail...
MISC: https://sylpheed.sraos...
FEDORA: FEDORA-2021-3823463b9a
FEDORA: FEDORA-2021-a4e9c45f9e