Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-28054HistoryMar 18, 2024 - 5:15 p.m.
CVE-2024-28054
2024-03-1817:15:07
Debian Security Bug Tracker
security-tracker.debian.org
18
amavis
mime
interpretation conflict
cve-2024-28054
mail user agents
banned files
malware
unix
Amavis before 2.12.3 and 2.13.x before 2.13.1, in part because of its use of MIME-tools, has an Interpretation Conflict (relative to some mail user agents) when there are multiple boundary parameters in a MIME email message. Consequently, there can be an incorrect check for banned files or malware.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | amavisd-new | < 1:2.13.0-3+deb12u1 | amavisd-new_1:2.13.0-3+deb12u1_all.deb |
| Debian | 11 | all | amavisd-new | < 1:2.11.1-5+deb11u1 | amavisd-new_1:2.11.1-5+deb11u1_all.deb |
| Debian | 999 | all | amavisd-new | < 1:2.13.0-5 | amavisd-new_1:2.13.0-5_all.deb |
| Debian | 13 | all | amavisd-new | < 1:2.13.0-5 | amavisd-new_1:2.13.0-5_all.deb |
Related
freebsd
freebsd
amavisd-new -- multipart boundary confusion
2024-03-14 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0212)
2024-06-07 00:00:00
Fedora: Security Advisory for amavis (FEDORA-2024-1d87055861)
2024-03-25 00:00:00
Fedora: Security Advisory for amavis (FEDORA-2024-3cf9eb64ba)
2024-03-25 00:00:00
nessus
nessus
Fedora 40 : amavis (2024-8bbcae6af2)
2024-04-29 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS / 23.10 / 24.04 LTS : amavisd-new vulnerability (USN-6790-1)
2024-05-28 00:00:00
Fedora 38 : amavis (2024-1d87055861)
2024-03-22 00:00:00
osv
osv
amavisd-new vulnerability
2024-05-28 11:24:30
nvd
nvd
CVE-2024-28054
2024-03-18 17:15:07
veracode
veracode
Misinterpretation Of Input
2024-03-17 06:07:04
cvelist
cvelist
CVE-2024-28054
2024-03-18 00:00:00
redos
redos
ROS-20240611-03
2024-06-11 00:00:00
ubuntucve
ubuntucve
CVE-2024-28054
2024-03-18 00:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: amavis-2.13.1-1.fc40
2024-03-23 00:52:17
[SECURITY] Fedora 38 Update: amavis-2.13.1-1.fc38
2024-03-23 00:52:40
[SECURITY] Fedora 39 Update: amavis-2.13.1-1.fc39
2024-03-23 00:58:22
ubuntu
ubuntu
amavisd-new vulnerability
2024-05-28 00:00:00
mageia
mageia
Updated amavisd-new packages fix security vulnerability
2024-06-06 18:48:22
cve
cve
CVE-2024-28054
2024-03-18 17:15:07
6.7 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
13.0%
Related for DEBIANCVE:CVE-2024-28054