We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of the recipients to compromise message confidentiality.
Reserved 2024-10-14 | Published 2024-11-12 | Updated 2024-11-12 | Assigner redhatImproper Verification of Cryptographic Signature
2024-11-11: | Reported to Red Hat. |
2024-11-11: | Made public. |
access.redhat.com/security/cve/CVE-2024-49393
bugzilla.redhat.com/show_bug.cgi?id=2325317 (RHBZ#2325317)
Support options