Security Advisory

CVE-2020-16117

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-07-29 17:59:10

Last updated 2024-08-04 13:37:53

Assigner mitre

State PUBLISHED

Description

In GNOME evolution-data-server before 3.35.91, a malicious server can crash the mail client with a NULL pointer dereference by sending an invalid (e.g., minimal) CAPABILITY line on a connection attempt. This is related to imapx_free_capability and imapx_connect_to_server.

← Browse all CVEs View on cve.org ↗