Vulnerability-Lookup

CVE-2007-2683 (GCVE-0-2007-2683)

Vulnerability from cvelistv5 – Published: 2007-05-15 21:00 – Updated: 2024-08-07 13:49

Summary

Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via "&" characters in the GECOS field, which triggers the overflow during alias expansion.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

RHSA-2007:0386

Vulnerability from csaf_redhat - Published: 2007-06-04 08:03 - Updated: 2025-11-21 17:31

Summary

Red Hat Security Advisory: mutt security update

Notes

Topic

An updated mutt package that fixes several security bugs is now available for Red Hat Enterprise Linux 3, 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team.

Details

Mutt is a text-mode mail user agent. A flaw was found in the way Mutt used temporary files on NFS file systems. Due to an implementation issue in the NFS protocol, Mutt was not able to exclusively open a new file. A local attacker could conduct a time-dependent attack and possibly gain access to e-mail attachments opened by a victim. (CVE-2006-5297) A flaw was found in the way Mutt processed certain APOP authentication requests. By sending certain responses when mutt attempted to authenticate against an APOP server, a remote attacker could potentially acquire certain portions of a user's authentication credentials. (CVE-2007-1558) A flaw was found in the way Mutt handled certain characters in gecos fields which could lead to a buffer overflow. The gecos field is an entry in the password database typically used to record general information about the user. A local attacker could give themselves a carefully crafted "Real Name" which could execute arbitrary code if a victim uses Mutt and expands the attackers alias. (CVE-2007-2683) All users of mutt should upgrade to this updated package, which contains a backported patches to correct these issues.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated mutt package that fixes several security bugs is now available for\nRed Hat Enterprise Linux 3, 4 and 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Mutt is a text-mode mail user agent.\n\nA flaw was found in the way Mutt used temporary files on NFS file systems.\nDue to an implementation issue in the NFS protocol, Mutt was not able to\nexclusively open a new file.  A local attacker could conduct a\ntime-dependent attack and possibly gain access to e-mail attachments opened\nby a victim. (CVE-2006-5297)\n\nA flaw was found in the way Mutt processed certain APOP authentication\nrequests. By sending certain responses when mutt attempted to authenticate\nagainst an APOP server, a remote attacker could potentially acquire certain\nportions of a user\u0027s authentication credentials. (CVE-2007-1558)\n\nA flaw was found in the way Mutt handled certain characters in gecos fields\nwhich could lead to a buffer overflow.  The gecos field is an entry in the\npassword database typically used to record general information about the\nuser.  A local attacker could give themselves a carefully crafted \"Real\nName\" which could execute arbitrary code if a victim uses Mutt and expands\nthe attackers alias.  (CVE-2007-2683)\n\nAll users of mutt should upgrade to this updated package, which\ncontains a backported patches to correct these issues.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2007:0386",
        "url": "https://access.redhat.com/errata/RHSA-2007:0386"
      },
      {
        "category": "external",
        "summary": "http://www.redhat.com/security/updates/classification/#moderate",
        "url": "http://www.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "211085",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=211085"
      },
      {
        "category": "external",
        "summary": "239890",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=239890"
      },
      {
        "category": "external",
        "summary": "241191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=241191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0386.json"
      }
    ],
    "title": "Red Hat Security Advisory: mutt security update",
    "tracking": {
      "current_release_date": "2025-11-21T17:31:42+00:00",
      "generator": {
        "date": "2025-11-21T17:31:42+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2007:0386",
      "initial_release_date": "2007-06-04T08:03:00+00:00",
      "revision_history": [
        {
          "date": "2007-06-04T08:03:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2008-01-07T17:02:34+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:31:42+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 4",
                  "product_id": "4AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop version 4",
                  "product_id": "4Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 4",
                  "product_id": "4ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 4",
                  "product_id": "4WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::ws"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
                  "product_id": "5Client",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:5::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux (v. 5 server)",
                "product": {
                  "name": "Red Hat Enterprise Linux (v. 5 server)",
                  "product_id": "5Server",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:5::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3",
                  "product_id": "3AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3",
                "product": {
                  "name": "Red Hat Desktop version 3",
                  "product_id": "3Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3",
                  "product_id": "3ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3",
                  "product_id": "3WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-12.0.3.el4.ia64",
                "product": {
                  "name": "mutt-5:1.4.1-12.0.3.el4.ia64",
                  "product_id": "mutt-5:1.4.1-12.0.3.el4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=ia64\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
                  "product_id": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=ia64\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
                  "product_id": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=ia64\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.2.2-3.0.2.el5.ia64",
                "product": {
                  "name": "mutt-5:1.4.2.2-3.0.2.el5.ia64",
                  "product_id": "mutt-5:1.4.2.2-3.0.2.el5.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=ia64\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-5.el3.ia64",
                "product": {
                  "name": "mutt-5:1.4.1-5.el3.ia64",
                  "product_id": "mutt-5:1.4.1-5.el3.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=ia64\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-5.el3.ia64",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-5.el3.ia64",
                  "product_id": "mutt-debuginfo-5:1.4.1-5.el3.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=ia64\u0026epoch=5"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-12.0.3.el4.src",
                "product": {
                  "name": "mutt-5:1.4.1-12.0.3.el4.src",
                  "product_id": "mutt-5:1.4.1-12.0.3.el4.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=src\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.2.2-3.0.2.el5.src",
                "product": {
                  "name": "mutt-5:1.4.2.2-3.0.2.el5.src",
                  "product_id": "mutt-5:1.4.2.2-3.0.2.el5.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=src\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-5.el3.src",
                "product": {
                  "name": "mutt-5:1.4.1-5.el3.src",
                  "product_id": "mutt-5:1.4.1-5.el3.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=src\u0026epoch=5"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-12.0.3.el4.x86_64",
                "product": {
                  "name": "mutt-5:1.4.1-12.0.3.el4.x86_64",
                  "product_id": "mutt-5:1.4.1-12.0.3.el4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=x86_64\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
                  "product_id": "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=x86_64\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
                  "product_id": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=x86_64\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.2.2-3.0.2.el5.x86_64",
                "product": {
                  "name": "mutt-5:1.4.2.2-3.0.2.el5.x86_64",
                  "product_id": "mutt-5:1.4.2.2-3.0.2.el5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=x86_64\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-5.el3.x86_64",
                "product": {
                  "name": "mutt-5:1.4.1-5.el3.x86_64",
                  "product_id": "mutt-5:1.4.1-5.el3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=x86_64\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-5.el3.x86_64",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-5.el3.x86_64",
                  "product_id": "mutt-debuginfo-5:1.4.1-5.el3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=x86_64\u0026epoch=5"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-12.0.3.el4.i386",
                "product": {
                  "name": "mutt-5:1.4.1-12.0.3.el4.i386",
                  "product_id": "mutt-5:1.4.1-12.0.3.el4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=i386\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
                  "product_id": "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=i386\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
                  "product_id": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=i386\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.2.2-3.0.2.el5.i386",
                "product": {
                  "name": "mutt-5:1.4.2.2-3.0.2.el5.i386",
                  "product_id": "mutt-5:1.4.2.2-3.0.2.el5.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=i386\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-5.el3.i386",
                "product": {
                  "name": "mutt-5:1.4.1-5.el3.i386",
                  "product_id": "mutt-5:1.4.1-5.el3.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=i386\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-5.el3.i386",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-5.el3.i386",
                  "product_id": "mutt-debuginfo-5:1.4.1-5.el3.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=i386\u0026epoch=5"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-12.0.3.el4.ppc",
                "product": {
                  "name": "mutt-5:1.4.1-12.0.3.el4.ppc",
                  "product_id": "mutt-5:1.4.1-12.0.3.el4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=ppc\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
                  "product_id": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=ppc\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
                  "product_id": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=ppc\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.2.2-3.0.2.el5.ppc",
                "product": {
                  "name": "mutt-5:1.4.2.2-3.0.2.el5.ppc",
                  "product_id": "mutt-5:1.4.2.2-3.0.2.el5.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=ppc\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-5.el3.ppc",
                "product": {
                  "name": "mutt-5:1.4.1-5.el3.ppc",
                  "product_id": "mutt-5:1.4.1-5.el3.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=ppc\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-5.el3.ppc",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-5.el3.ppc",
                  "product_id": "mutt-debuginfo-5:1.4.1-5.el3.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=ppc\u0026epoch=5"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-12.0.3.el4.s390",
                "product": {
                  "name": "mutt-5:1.4.1-12.0.3.el4.s390",
                  "product_id": "mutt-5:1.4.1-12.0.3.el4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=s390\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
                  "product_id": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=s390\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-5.el3.s390",
                "product": {
                  "name": "mutt-5:1.4.1-5.el3.s390",
                  "product_id": "mutt-5:1.4.1-5.el3.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=s390\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-5.el3.s390",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-5.el3.s390",
                  "product_id": "mutt-debuginfo-5:1.4.1-5.el3.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=s390\u0026epoch=5"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-12.0.3.el4.s390x",
                "product": {
                  "name": "mutt-5:1.4.1-12.0.3.el4.s390x",
                  "product_id": "mutt-5:1.4.1-12.0.3.el4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-12.0.3.el4?arch=s390x\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
                  "product_id": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-12.0.3.el4?arch=s390x\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
                  "product_id": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.2.2-3.0.2.el5?arch=s390x\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.2.2-3.0.2.el5.s390x",
                "product": {
                  "name": "mutt-5:1.4.2.2-3.0.2.el5.s390x",
                  "product_id": "mutt-5:1.4.2.2-3.0.2.el5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.2.2-3.0.2.el5?arch=s390x\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-5:1.4.1-5.el3.s390x",
                "product": {
                  "name": "mutt-5:1.4.1-5.el3.s390x",
                  "product_id": "mutt-5:1.4.1-5.el3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt@1.4.1-5.el3?arch=s390x\u0026epoch=5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "mutt-debuginfo-5:1.4.1-5.el3.s390x",
                "product": {
                  "name": "mutt-debuginfo-5:1.4.1-5.el3.s390x",
                  "product_id": "mutt-debuginfo-5:1.4.1-5.el3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mutt-debuginfo@1.4.1-5.el3?arch=s390x\u0026epoch=5"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-5:1.4.1-5.el3.i386"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-5:1.4.1-5.el3.ia64"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-5:1.4.1-5.el3.ppc"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-5:1.4.1-5.el3.s390"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-5:1.4.1-5.el3.s390x"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-5:1.4.1-5.el3.src"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.src",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-5:1.4.1-5.el3.x86_64"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-5:1.4.1-5.el3.i386"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-5:1.4.1-5.el3.ia64"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-5:1.4.1-5.el3.ppc"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-5:1.4.1-5.el3.s390"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-5:1.4.1-5.el3.s390x"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.src as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-5:1.4.1-5.el3.src"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.src",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-5:1.4.1-5.el3.x86_64"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-5:1.4.1-5.el3.i386"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-5:1.4.1-5.el3.ia64"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-5:1.4.1-5.el3.ppc"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-5:1.4.1-5.el3.s390"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-5:1.4.1-5.el3.s390x"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-5:1.4.1-5.el3.src"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.src",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-5:1.4.1-5.el3.x86_64"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-5:1.4.1-5.el3.i386"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-5:1.4.1-5.el3.ia64"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-5:1.4.1-5.el3.ppc"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-5:1.4.1-5.el3.s390"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-5:1.4.1-5.el3.s390x"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.src as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-5:1.4.1-5.el3.src"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.src",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-5:1.4.1-5.el3.x86_64"
        },
        "product_reference": "mutt-5:1.4.1-5.el3.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-5.el3.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-5.el3.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-5:1.4.1-12.0.3.el4.i386"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.i386",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-5:1.4.1-12.0.3.el4.ia64"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.ia64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-5:1.4.1-12.0.3.el4.ppc"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.ppc",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-5:1.4.1-12.0.3.el4.s390"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.s390",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-5:1.4.1-12.0.3.el4.s390x"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.s390x",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-5:1.4.1-12.0.3.el4.src"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.src",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.x86_64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.i386",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.ia64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.ppc",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.s390",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.s390x",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-5:1.4.1-12.0.3.el4.src"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.src",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.x86_64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-5:1.4.1-12.0.3.el4.i386"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.i386",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-5:1.4.1-12.0.3.el4.ia64"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.ia64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-5:1.4.1-12.0.3.el4.ppc"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.ppc",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-5:1.4.1-12.0.3.el4.s390"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.s390",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-5:1.4.1-12.0.3.el4.s390x"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.s390x",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-5:1.4.1-12.0.3.el4.src"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.src",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.x86_64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-5:1.4.1-12.0.3.el4.i386"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.i386",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-5:1.4.1-12.0.3.el4.ia64"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.ia64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-5:1.4.1-12.0.3.el4.ppc"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.ppc",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-5:1.4.1-12.0.3.el4.s390"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.s390",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-5:1.4.1-12.0.3.el4.s390x"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.s390x",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.src as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-5:1.4.1-12.0.3.el4.src"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.src",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64"
        },
        "product_reference": "mutt-5:1.4.1-12.0.3.el4.x86_64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.i386",
        "relates_to_product_reference": "5Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.ia64",
        "relates_to_product_reference": "5Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.ppc",
        "relates_to_product_reference": "5Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.s390x",
        "relates_to_product_reference": "5Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client:mutt-5:1.4.2.2-3.0.2.el5.src"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.src",
        "relates_to_product_reference": "5Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.x86_64",
        "relates_to_product_reference": "5Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386"
        },
        "product_reference": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
        "relates_to_product_reference": "5Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
        "relates_to_product_reference": "5Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc"
        },
        "product_reference": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
        "relates_to_product_reference": "5Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x"
        },
        "product_reference": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
        "relates_to_product_reference": "5Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
        "relates_to_product_reference": "5Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.i386",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.ia64",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.ppc",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.s390x",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:mutt-5:1.4.2.2-3.0.2.el5.src"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.src",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64"
        },
        "product_reference": "mutt-5:1.4.2.2-3.0.2.el5.x86_64",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386"
        },
        "product_reference": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc"
        },
        "product_reference": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x"
        },
        "product_reference": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64"
        },
        "product_reference": "mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
        "relates_to_product_reference": "5Server"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2006-5297",
      "discovery_date": "2006-10-04T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "211085"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Multiple mutt tempfile race conditions",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.\n\nThe risks associated with fixing this bug are greater than the low severity security risk. We therefore currently have no plans to fix this flaw in Red Hat Enterprise Linux 2.1 which is in maintenance mode.",
          "title": "Statement"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:mutt-5:1.4.1-5.el3.i386",
          "3AS:mutt-5:1.4.1-5.el3.ia64",
          "3AS:mutt-5:1.4.1-5.el3.ppc",
          "3AS:mutt-5:1.4.1-5.el3.s390",
          "3AS:mutt-5:1.4.1-5.el3.s390x",
          "3AS:mutt-5:1.4.1-5.el3.src",
          "3AS:mutt-5:1.4.1-5.el3.x86_64",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "3Desktop:mutt-5:1.4.1-5.el3.i386",
          "3Desktop:mutt-5:1.4.1-5.el3.ia64",
          "3Desktop:mutt-5:1.4.1-5.el3.ppc",
          "3Desktop:mutt-5:1.4.1-5.el3.s390",
          "3Desktop:mutt-5:1.4.1-5.el3.s390x",
          "3Desktop:mutt-5:1.4.1-5.el3.src",
          "3Desktop:mutt-5:1.4.1-5.el3.x86_64",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "3ES:mutt-5:1.4.1-5.el3.i386",
          "3ES:mutt-5:1.4.1-5.el3.ia64",
          "3ES:mutt-5:1.4.1-5.el3.ppc",
          "3ES:mutt-5:1.4.1-5.el3.s390",
          "3ES:mutt-5:1.4.1-5.el3.s390x",
          "3ES:mutt-5:1.4.1-5.el3.src",
          "3ES:mutt-5:1.4.1-5.el3.x86_64",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "3WS:mutt-5:1.4.1-5.el3.i386",
          "3WS:mutt-5:1.4.1-5.el3.ia64",
          "3WS:mutt-5:1.4.1-5.el3.ppc",
          "3WS:mutt-5:1.4.1-5.el3.s390",
          "3WS:mutt-5:1.4.1-5.el3.s390x",
          "3WS:mutt-5:1.4.1-5.el3.src",
          "3WS:mutt-5:1.4.1-5.el3.x86_64",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "4AS:mutt-5:1.4.1-12.0.3.el4.i386",
          "4AS:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4AS:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4AS:mutt-5:1.4.1-12.0.3.el4.s390",
          "4AS:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4AS:mutt-5:1.4.1-12.0.3.el4.src",
          "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.src",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "4ES:mutt-5:1.4.1-12.0.3.el4.i386",
          "4ES:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4ES:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4ES:mutt-5:1.4.1-12.0.3.el4.s390",
          "4ES:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4ES:mutt-5:1.4.1-12.0.3.el4.src",
          "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "4WS:mutt-5:1.4.1-12.0.3.el4.i386",
          "4WS:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4WS:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4WS:mutt-5:1.4.1-12.0.3.el4.s390",
          "4WS:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4WS:mutt-5:1.4.1-12.0.3.el4.src",
          "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.src",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.src",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2006-5297"
        },
        {
          "category": "external",
          "summary": "RHBZ#211085",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=211085"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2006-5297",
          "url": "https://www.cve.org/CVERecord?id=CVE-2006-5297"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-5297",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-5297"
        }
      ],
      "release_date": "2006-10-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-06-04T08:03:00+00:00",
          "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.  \n\nThis update is available via Red Hat Network.  Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188",
          "product_ids": [
            "3AS:mutt-5:1.4.1-5.el3.i386",
            "3AS:mutt-5:1.4.1-5.el3.ia64",
            "3AS:mutt-5:1.4.1-5.el3.ppc",
            "3AS:mutt-5:1.4.1-5.el3.s390",
            "3AS:mutt-5:1.4.1-5.el3.s390x",
            "3AS:mutt-5:1.4.1-5.el3.src",
            "3AS:mutt-5:1.4.1-5.el3.x86_64",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3Desktop:mutt-5:1.4.1-5.el3.i386",
            "3Desktop:mutt-5:1.4.1-5.el3.ia64",
            "3Desktop:mutt-5:1.4.1-5.el3.ppc",
            "3Desktop:mutt-5:1.4.1-5.el3.s390",
            "3Desktop:mutt-5:1.4.1-5.el3.s390x",
            "3Desktop:mutt-5:1.4.1-5.el3.src",
            "3Desktop:mutt-5:1.4.1-5.el3.x86_64",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3ES:mutt-5:1.4.1-5.el3.i386",
            "3ES:mutt-5:1.4.1-5.el3.ia64",
            "3ES:mutt-5:1.4.1-5.el3.ppc",
            "3ES:mutt-5:1.4.1-5.el3.s390",
            "3ES:mutt-5:1.4.1-5.el3.s390x",
            "3ES:mutt-5:1.4.1-5.el3.src",
            "3ES:mutt-5:1.4.1-5.el3.x86_64",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3WS:mutt-5:1.4.1-5.el3.i386",
            "3WS:mutt-5:1.4.1-5.el3.ia64",
            "3WS:mutt-5:1.4.1-5.el3.ppc",
            "3WS:mutt-5:1.4.1-5.el3.s390",
            "3WS:mutt-5:1.4.1-5.el3.s390x",
            "3WS:mutt-5:1.4.1-5.el3.src",
            "3WS:mutt-5:1.4.1-5.el3.x86_64",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "4AS:mutt-5:1.4.1-12.0.3.el4.i386",
            "4AS:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4AS:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4AS:mutt-5:1.4.1-12.0.3.el4.s390",
            "4AS:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4AS:mutt-5:1.4.1-12.0.3.el4.src",
            "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.src",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4ES:mutt-5:1.4.1-12.0.3.el4.i386",
            "4ES:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4ES:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4ES:mutt-5:1.4.1-12.0.3.el4.s390",
            "4ES:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4ES:mutt-5:1.4.1-12.0.3.el4.src",
            "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4WS:mutt-5:1.4.1-12.0.3.el4.i386",
            "4WS:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4WS:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4WS:mutt-5:1.4.1-12.0.3.el4.s390",
            "4WS:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4WS:mutt-5:1.4.1-12.0.3.el4.src",
            "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.src",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.src",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0386"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "Multiple mutt tempfile race conditions"
    },
    {
      "cve": "CVE-2007-1558",
      "discovery_date": "2007-03-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "241191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions.  NOTE: this design-level issue potentially affects all products that use APOP, including (1) Thunderbird 1.x before 1.5.0.12 and 2.x before 2.0.0.4, (2) Evolution, (3) mutt, (4) fetchmail before 6.3.8, (5) SeaMonkey 1.0.x before 1.0.9 and 1.1.x before 1.1.2, (6) Balsa 2.3.16 and earlier, (7) Mailfilter before 0.8.2, and possibly other products.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "fetchmail/mutt/evolution/...: APOP password disclosure vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:mutt-5:1.4.1-5.el3.i386",
          "3AS:mutt-5:1.4.1-5.el3.ia64",
          "3AS:mutt-5:1.4.1-5.el3.ppc",
          "3AS:mutt-5:1.4.1-5.el3.s390",
          "3AS:mutt-5:1.4.1-5.el3.s390x",
          "3AS:mutt-5:1.4.1-5.el3.src",
          "3AS:mutt-5:1.4.1-5.el3.x86_64",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "3Desktop:mutt-5:1.4.1-5.el3.i386",
          "3Desktop:mutt-5:1.4.1-5.el3.ia64",
          "3Desktop:mutt-5:1.4.1-5.el3.ppc",
          "3Desktop:mutt-5:1.4.1-5.el3.s390",
          "3Desktop:mutt-5:1.4.1-5.el3.s390x",
          "3Desktop:mutt-5:1.4.1-5.el3.src",
          "3Desktop:mutt-5:1.4.1-5.el3.x86_64",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "3ES:mutt-5:1.4.1-5.el3.i386",
          "3ES:mutt-5:1.4.1-5.el3.ia64",
          "3ES:mutt-5:1.4.1-5.el3.ppc",
          "3ES:mutt-5:1.4.1-5.el3.s390",
          "3ES:mutt-5:1.4.1-5.el3.s390x",
          "3ES:mutt-5:1.4.1-5.el3.src",
          "3ES:mutt-5:1.4.1-5.el3.x86_64",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "3WS:mutt-5:1.4.1-5.el3.i386",
          "3WS:mutt-5:1.4.1-5.el3.ia64",
          "3WS:mutt-5:1.4.1-5.el3.ppc",
          "3WS:mutt-5:1.4.1-5.el3.s390",
          "3WS:mutt-5:1.4.1-5.el3.s390x",
          "3WS:mutt-5:1.4.1-5.el3.src",
          "3WS:mutt-5:1.4.1-5.el3.x86_64",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "4AS:mutt-5:1.4.1-12.0.3.el4.i386",
          "4AS:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4AS:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4AS:mutt-5:1.4.1-12.0.3.el4.s390",
          "4AS:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4AS:mutt-5:1.4.1-12.0.3.el4.src",
          "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.src",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "4ES:mutt-5:1.4.1-12.0.3.el4.i386",
          "4ES:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4ES:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4ES:mutt-5:1.4.1-12.0.3.el4.s390",
          "4ES:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4ES:mutt-5:1.4.1-12.0.3.el4.src",
          "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "4WS:mutt-5:1.4.1-12.0.3.el4.i386",
          "4WS:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4WS:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4WS:mutt-5:1.4.1-12.0.3.el4.s390",
          "4WS:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4WS:mutt-5:1.4.1-12.0.3.el4.src",
          "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.src",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.src",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-1558"
        },
        {
          "category": "external",
          "summary": "RHBZ#241191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=241191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-1558",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-1558"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-1558",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-1558"
        }
      ],
      "release_date": "2007-04-02T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-06-04T08:03:00+00:00",
          "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.  \n\nThis update is available via Red Hat Network.  Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188",
          "product_ids": [
            "3AS:mutt-5:1.4.1-5.el3.i386",
            "3AS:mutt-5:1.4.1-5.el3.ia64",
            "3AS:mutt-5:1.4.1-5.el3.ppc",
            "3AS:mutt-5:1.4.1-5.el3.s390",
            "3AS:mutt-5:1.4.1-5.el3.s390x",
            "3AS:mutt-5:1.4.1-5.el3.src",
            "3AS:mutt-5:1.4.1-5.el3.x86_64",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3Desktop:mutt-5:1.4.1-5.el3.i386",
            "3Desktop:mutt-5:1.4.1-5.el3.ia64",
            "3Desktop:mutt-5:1.4.1-5.el3.ppc",
            "3Desktop:mutt-5:1.4.1-5.el3.s390",
            "3Desktop:mutt-5:1.4.1-5.el3.s390x",
            "3Desktop:mutt-5:1.4.1-5.el3.src",
            "3Desktop:mutt-5:1.4.1-5.el3.x86_64",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3ES:mutt-5:1.4.1-5.el3.i386",
            "3ES:mutt-5:1.4.1-5.el3.ia64",
            "3ES:mutt-5:1.4.1-5.el3.ppc",
            "3ES:mutt-5:1.4.1-5.el3.s390",
            "3ES:mutt-5:1.4.1-5.el3.s390x",
            "3ES:mutt-5:1.4.1-5.el3.src",
            "3ES:mutt-5:1.4.1-5.el3.x86_64",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3WS:mutt-5:1.4.1-5.el3.i386",
            "3WS:mutt-5:1.4.1-5.el3.ia64",
            "3WS:mutt-5:1.4.1-5.el3.ppc",
            "3WS:mutt-5:1.4.1-5.el3.s390",
            "3WS:mutt-5:1.4.1-5.el3.s390x",
            "3WS:mutt-5:1.4.1-5.el3.src",
            "3WS:mutt-5:1.4.1-5.el3.x86_64",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "4AS:mutt-5:1.4.1-12.0.3.el4.i386",
            "4AS:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4AS:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4AS:mutt-5:1.4.1-12.0.3.el4.s390",
            "4AS:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4AS:mutt-5:1.4.1-12.0.3.el4.src",
            "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.src",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4ES:mutt-5:1.4.1-12.0.3.el4.i386",
            "4ES:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4ES:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4ES:mutt-5:1.4.1-12.0.3.el4.s390",
            "4ES:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4ES:mutt-5:1.4.1-12.0.3.el4.src",
            "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4WS:mutt-5:1.4.1-12.0.3.el4.i386",
            "4WS:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4WS:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4WS:mutt-5:1.4.1-12.0.3.el4.s390",
            "4WS:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4WS:mutt-5:1.4.1-12.0.3.el4.src",
            "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.src",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.src",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0386"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 2.6,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "products": [
            "3AS:mutt-5:1.4.1-5.el3.i386",
            "3AS:mutt-5:1.4.1-5.el3.ia64",
            "3AS:mutt-5:1.4.1-5.el3.ppc",
            "3AS:mutt-5:1.4.1-5.el3.s390",
            "3AS:mutt-5:1.4.1-5.el3.s390x",
            "3AS:mutt-5:1.4.1-5.el3.src",
            "3AS:mutt-5:1.4.1-5.el3.x86_64",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3Desktop:mutt-5:1.4.1-5.el3.i386",
            "3Desktop:mutt-5:1.4.1-5.el3.ia64",
            "3Desktop:mutt-5:1.4.1-5.el3.ppc",
            "3Desktop:mutt-5:1.4.1-5.el3.s390",
            "3Desktop:mutt-5:1.4.1-5.el3.s390x",
            "3Desktop:mutt-5:1.4.1-5.el3.src",
            "3Desktop:mutt-5:1.4.1-5.el3.x86_64",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3ES:mutt-5:1.4.1-5.el3.i386",
            "3ES:mutt-5:1.4.1-5.el3.ia64",
            "3ES:mutt-5:1.4.1-5.el3.ppc",
            "3ES:mutt-5:1.4.1-5.el3.s390",
            "3ES:mutt-5:1.4.1-5.el3.s390x",
            "3ES:mutt-5:1.4.1-5.el3.src",
            "3ES:mutt-5:1.4.1-5.el3.x86_64",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3WS:mutt-5:1.4.1-5.el3.i386",
            "3WS:mutt-5:1.4.1-5.el3.ia64",
            "3WS:mutt-5:1.4.1-5.el3.ppc",
            "3WS:mutt-5:1.4.1-5.el3.s390",
            "3WS:mutt-5:1.4.1-5.el3.s390x",
            "3WS:mutt-5:1.4.1-5.el3.src",
            "3WS:mutt-5:1.4.1-5.el3.x86_64",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "4AS:mutt-5:1.4.1-12.0.3.el4.i386",
            "4AS:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4AS:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4AS:mutt-5:1.4.1-12.0.3.el4.s390",
            "4AS:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4AS:mutt-5:1.4.1-12.0.3.el4.src",
            "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.src",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4ES:mutt-5:1.4.1-12.0.3.el4.i386",
            "4ES:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4ES:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4ES:mutt-5:1.4.1-12.0.3.el4.s390",
            "4ES:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4ES:mutt-5:1.4.1-12.0.3.el4.src",
            "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4WS:mutt-5:1.4.1-12.0.3.el4.i386",
            "4WS:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4WS:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4WS:mutt-5:1.4.1-12.0.3.el4.s390",
            "4WS:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4WS:mutt-5:1.4.1-12.0.3.el4.src",
            "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.src",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.src",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "fetchmail/mutt/evolution/...: APOP password disclosure vulnerability"
    },
    {
      "cve": "CVE-2007-2683",
      "discovery_date": "2007-05-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "239890"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"\u0026\" characters in the GECOS field, which triggers the overflow during alias expansion.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Buffer overflow in mutt\u0027s gecos structure handling",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:mutt-5:1.4.1-5.el3.i386",
          "3AS:mutt-5:1.4.1-5.el3.ia64",
          "3AS:mutt-5:1.4.1-5.el3.ppc",
          "3AS:mutt-5:1.4.1-5.el3.s390",
          "3AS:mutt-5:1.4.1-5.el3.s390x",
          "3AS:mutt-5:1.4.1-5.el3.src",
          "3AS:mutt-5:1.4.1-5.el3.x86_64",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "3Desktop:mutt-5:1.4.1-5.el3.i386",
          "3Desktop:mutt-5:1.4.1-5.el3.ia64",
          "3Desktop:mutt-5:1.4.1-5.el3.ppc",
          "3Desktop:mutt-5:1.4.1-5.el3.s390",
          "3Desktop:mutt-5:1.4.1-5.el3.s390x",
          "3Desktop:mutt-5:1.4.1-5.el3.src",
          "3Desktop:mutt-5:1.4.1-5.el3.x86_64",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "3ES:mutt-5:1.4.1-5.el3.i386",
          "3ES:mutt-5:1.4.1-5.el3.ia64",
          "3ES:mutt-5:1.4.1-5.el3.ppc",
          "3ES:mutt-5:1.4.1-5.el3.s390",
          "3ES:mutt-5:1.4.1-5.el3.s390x",
          "3ES:mutt-5:1.4.1-5.el3.src",
          "3ES:mutt-5:1.4.1-5.el3.x86_64",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "3WS:mutt-5:1.4.1-5.el3.i386",
          "3WS:mutt-5:1.4.1-5.el3.ia64",
          "3WS:mutt-5:1.4.1-5.el3.ppc",
          "3WS:mutt-5:1.4.1-5.el3.s390",
          "3WS:mutt-5:1.4.1-5.el3.s390x",
          "3WS:mutt-5:1.4.1-5.el3.src",
          "3WS:mutt-5:1.4.1-5.el3.x86_64",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
          "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
          "4AS:mutt-5:1.4.1-12.0.3.el4.i386",
          "4AS:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4AS:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4AS:mutt-5:1.4.1-12.0.3.el4.s390",
          "4AS:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4AS:mutt-5:1.4.1-12.0.3.el4.src",
          "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.src",
          "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "4ES:mutt-5:1.4.1-12.0.3.el4.i386",
          "4ES:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4ES:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4ES:mutt-5:1.4.1-12.0.3.el4.s390",
          "4ES:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4ES:mutt-5:1.4.1-12.0.3.el4.src",
          "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "4WS:mutt-5:1.4.1-12.0.3.el4.i386",
          "4WS:mutt-5:1.4.1-12.0.3.el4.ia64",
          "4WS:mutt-5:1.4.1-12.0.3.el4.ppc",
          "4WS:mutt-5:1.4.1-12.0.3.el4.s390",
          "4WS:mutt-5:1.4.1-12.0.3.el4.s390x",
          "4WS:mutt-5:1.4.1-12.0.3.el4.src",
          "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
          "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.src",
          "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
          "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.src",
          "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
          "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-2683"
        },
        {
          "category": "external",
          "summary": "RHBZ#239890",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=239890"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2683",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-2683"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2683",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2683"
        }
      ],
      "release_date": "2007-05-11T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-06-04T08:03:00+00:00",
          "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.  \n\nThis update is available via Red Hat Network.  Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188",
          "product_ids": [
            "3AS:mutt-5:1.4.1-5.el3.i386",
            "3AS:mutt-5:1.4.1-5.el3.ia64",
            "3AS:mutt-5:1.4.1-5.el3.ppc",
            "3AS:mutt-5:1.4.1-5.el3.s390",
            "3AS:mutt-5:1.4.1-5.el3.s390x",
            "3AS:mutt-5:1.4.1-5.el3.src",
            "3AS:mutt-5:1.4.1-5.el3.x86_64",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3AS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3Desktop:mutt-5:1.4.1-5.el3.i386",
            "3Desktop:mutt-5:1.4.1-5.el3.ia64",
            "3Desktop:mutt-5:1.4.1-5.el3.ppc",
            "3Desktop:mutt-5:1.4.1-5.el3.s390",
            "3Desktop:mutt-5:1.4.1-5.el3.s390x",
            "3Desktop:mutt-5:1.4.1-5.el3.src",
            "3Desktop:mutt-5:1.4.1-5.el3.x86_64",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3Desktop:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3ES:mutt-5:1.4.1-5.el3.i386",
            "3ES:mutt-5:1.4.1-5.el3.ia64",
            "3ES:mutt-5:1.4.1-5.el3.ppc",
            "3ES:mutt-5:1.4.1-5.el3.s390",
            "3ES:mutt-5:1.4.1-5.el3.s390x",
            "3ES:mutt-5:1.4.1-5.el3.src",
            "3ES:mutt-5:1.4.1-5.el3.x86_64",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3ES:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "3WS:mutt-5:1.4.1-5.el3.i386",
            "3WS:mutt-5:1.4.1-5.el3.ia64",
            "3WS:mutt-5:1.4.1-5.el3.ppc",
            "3WS:mutt-5:1.4.1-5.el3.s390",
            "3WS:mutt-5:1.4.1-5.el3.s390x",
            "3WS:mutt-5:1.4.1-5.el3.src",
            "3WS:mutt-5:1.4.1-5.el3.x86_64",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.i386",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.ia64",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.ppc",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.s390x",
            "3WS:mutt-debuginfo-5:1.4.1-5.el3.x86_64",
            "4AS:mutt-5:1.4.1-12.0.3.el4.i386",
            "4AS:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4AS:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4AS:mutt-5:1.4.1-12.0.3.el4.s390",
            "4AS:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4AS:mutt-5:1.4.1-12.0.3.el4.src",
            "4AS:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4AS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.i386",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.src",
            "4Desktop:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4Desktop:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4ES:mutt-5:1.4.1-12.0.3.el4.i386",
            "4ES:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4ES:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4ES:mutt-5:1.4.1-12.0.3.el4.s390",
            "4ES:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4ES:mutt-5:1.4.1-12.0.3.el4.src",
            "4ES:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4ES:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "4WS:mutt-5:1.4.1-12.0.3.el4.i386",
            "4WS:mutt-5:1.4.1-12.0.3.el4.ia64",
            "4WS:mutt-5:1.4.1-12.0.3.el4.ppc",
            "4WS:mutt-5:1.4.1-12.0.3.el4.s390",
            "4WS:mutt-5:1.4.1-12.0.3.el4.s390x",
            "4WS:mutt-5:1.4.1-12.0.3.el4.src",
            "4WS:mutt-5:1.4.1-12.0.3.el4.x86_64",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.i386",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ia64",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.ppc",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.s390x",
            "4WS:mutt-debuginfo-5:1.4.1-12.0.3.el4.x86_64",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.i386",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.ia64",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.ppc",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.s390x",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.src",
            "5Client:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
            "5Client:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.i386",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.ia64",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.ppc",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.s390x",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.src",
            "5Server:mutt-5:1.4.2.2-3.0.2.el5.x86_64",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.i386",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ia64",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.ppc",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.s390x",
            "5Server:mutt-debuginfo-5:1.4.2.2-3.0.2.el5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0386"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "Buffer overflow in mutt\u0027s gecos structure handling"
    }
  ]
}

FKIE_CVE-2007-2683

Vulnerability from fkie_nvd - Published: 2007-05-15 21:19 - Updated: 2025-04-09 00:30

Severity ?

Summary

Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via "&" characters in the GECOS field, which triggers the overflow during alias expansion.

References

	URL	Tags
	cve@mitre.org	http://dev.mutt.org/trac/ticket/2885
	cve@mitre.org	http://osvdb.org/34973
	cve@mitre.org	http://secunia.com/advisories/25408
	cve@mitre.org	http://secunia.com/advisories/25515
	cve@mitre.org	http://secunia.com/advisories/25529
	cve@mitre.org	http://secunia.com/advisories/25546
	cve@mitre.org	http://secunia.com/advisories/26415
	cve@mitre.org	http://www.mandriva.com/security/advisories?name=MDKSA-2007:113
	cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2007-0386.html
	cve@mitre.org	http://www.securityfocus.com/bid/24192
	cve@mitre.org	http://www.securitytracker.com/id?1018066
	cve@mitre.org	http://www.trustix.org/errata/2007/0024/
	cve@mitre.org	https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890
	cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/34441
	cve@mitre.org	https://issues.rpath.com/browse/RPL-1391
	cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543
	af854a3a-2127-422b-91ae-364da2661108	http://dev.mutt.org/trac/ticket/2885
	af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/34973
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/25408
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/25515
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/25529
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/25546
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/26415
	af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDKSA-2007:113
	af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2007-0386.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/24192
	af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1018066
	af854a3a-2127-422b-91ae-364da2661108	http://www.trustix.org/errata/2007/0024/
	af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890
	af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/34441
	af854a3a-2127-422b-91ae-364da2661108	https://issues.rpath.com/browse/RPL-1391
	af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543

Impacted products

	Vendor	Product	Version
	mutt	mutt	1.4.2

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:mutt:mutt:1.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A0CD218-AA09-49B0-A87B-7FC04FF54500",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"\u0026\" characters in the GECOS field, which triggers the overflow during alias expansion."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer en Mutt 1.4.2 podr\u00eda permitir a usuarios locales ejecutar c\u00f3digo de su elecci\u00f3n mediante caracteres \"\u0026\" en el campo GECOS, lo cual dispara el desbordamiento durante una expansi\u00f3n de alias."
    }
  ],
  "id": "CVE-2007-2683",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "HIGH",
          "accessVector": "LOCAL",
          "authentication": "SINGLE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 3.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:L/AC:H/Au:S/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 1.5,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": true,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-05-15T21:19:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://dev.mutt.org/trac/ticket/2885"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/34973"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/25408"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/25515"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/25529"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/25546"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/26415"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0386.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/24192"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1018066"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.trustix.org/errata/2007/0024/"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://issues.rpath.com/browse/RPL-1391"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://dev.mutt.org/trac/ticket/2885"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/34973"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/25408"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/25515"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/25529"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/25546"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/26415"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0386.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/24192"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1018066"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.trustix.org/errata/2007/0024/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://issues.rpath.com/browse/RPL-1391"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vendorComments": [
    {
      "comment": "Updates for Red Hat Enterprise Linux are available from\nhttp://rhn.redhat.com/errata/RHSA-2007-0386.html",
      "lastModified": "2007-06-04T00:00:00",
      "organization": "Red Hat"
    }
  ],
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-C6H8-QR22-65QM

Vulnerability from github – Published: 2022-05-01 18:06 – Updated: 2025-04-09 03:41

Details

Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via "&" characters in the GECOS field, which triggers the overflow during alias expansion.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-2683"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-05-15T21:19:00Z",
    "severity": "LOW"
  },
  "details": "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"\u0026\" characters in the GECOS field, which triggers the overflow during alias expansion.",
  "id": "GHSA-c6h8-qr22-65qm",
  "modified": "2025-04-09T03:41:37Z",
  "published": "2022-05-01T18:06:06Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2683"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441"
    },
    {
      "type": "WEB",
      "url": "https://issues.rpath.com/browse/RPL-1391"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543"
    },
    {
      "type": "WEB",
      "url": "http://dev.mutt.org/trac/ticket/2885"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/34973"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/25408"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/25515"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/25529"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/25546"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/26415"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0386.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/24192"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1018066"
    },
    {
      "type": "WEB",
      "url": "http://www.trustix.org/errata/2007/0024"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2007-2683

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via "&" characters in the GECOS field, which triggers the overflow during alias expansion.

Aliases

CVE-2007-2683

Aliases

CVE-2007-2683

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-2683",
    "description": "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"\u0026\" characters in the GECOS field, which triggers the overflow during alias expansion.",
    "id": "GSD-2007-2683",
    "references": [
      "https://www.suse.com/security/cve/CVE-2007-2683.html",
      "https://access.redhat.com/errata/RHSA-2007:0386",
      "https://linux.oracle.com/cve/CVE-2007-2683.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-2683"
      ],
      "details": "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"\u0026\" characters in the GECOS field, which triggers the overflow during alias expansion.",
      "id": "GSD-2007-2683",
      "modified": "2023-12-13T01:21:37.467220Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-2683",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"\u0026\" characters in the GECOS field, which triggers the overflow during alias expansion."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "25529",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/25529"
          },
          {
            "name": "1018066",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id?1018066"
          },
          {
            "name": "2007-0024",
            "refsource": "TRUSTIX",
            "url": "http://www.trustix.org/errata/2007/0024/"
          },
          {
            "name": "26415",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/26415"
          },
          {
            "name": "http://dev.mutt.org/trac/ticket/2885",
            "refsource": "MISC",
            "url": "http://dev.mutt.org/trac/ticket/2885"
          },
          {
            "name": "25408",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/25408"
          },
          {
            "name": "34973",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/34973"
          },
          {
            "name": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890",
            "refsource": "CONFIRM",
            "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890"
          },
          {
            "name": "oval:org.mitre.oval:def:10543",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543"
          },
          {
            "name": "25546",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/25546"
          },
          {
            "name": "25515",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/25515"
          },
          {
            "name": "mutt-gecos-bo(34441)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441"
          },
          {
            "name": "MDKSA-2007:113",
            "refsource": "MANDRIVA",
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113"
          },
          {
            "name": "RHSA-2007:0386",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2007-0386.html"
          },
          {
            "name": "24192",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/24192"
          },
          {
            "name": "https://issues.rpath.com/browse/RPL-1391",
            "refsource": "CONFIRM",
            "url": "https://issues.rpath.com/browse/RPL-1391"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:mutt:mutt:1.4.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-2683"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via \"\u0026\" characters in the GECOS field, which triggers the overflow during alias expansion."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890"
            },
            {
              "name": "1018066",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1018066"
            },
            {
              "name": "http://dev.mutt.org/trac/ticket/2885",
              "refsource": "MISC",
              "tags": [],
              "url": "http://dev.mutt.org/trac/ticket/2885"
            },
            {
              "name": "https://issues.rpath.com/browse/RPL-1391",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://issues.rpath.com/browse/RPL-1391"
            },
            {
              "name": "MDKSA-2007:113",
              "refsource": "MANDRIVA",
              "tags": [],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:113"
            },
            {
              "name": "RHSA-2007:0386",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2007-0386.html"
            },
            {
              "name": "2007-0024",
              "refsource": "TRUSTIX",
              "tags": [],
              "url": "http://www.trustix.org/errata/2007/0024/"
            },
            {
              "name": "24192",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/24192"
            },
            {
              "name": "25408",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/25408"
            },
            {
              "name": "25529",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/25529"
            },
            {
              "name": "25515",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/25515"
            },
            {
              "name": "25546",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/25546"
            },
            {
              "name": "26415",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/26415"
            },
            {
              "name": "34973",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/34973"
            },
            {
              "name": "mutt-gecos-bo(34441)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34441"
            },
            {
              "name": "oval:org.mitre.oval:def:10543",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10543"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "SINGLE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 3.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:L/AC:H/Au:S/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 1.5,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": true,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-10-11T01:32Z",
      "publishedDate": "2007-05-15T21:19Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2007-2683 (GCVE-0-2007-2683)

RHSA-2007:0386

FKIE_CVE-2007-2683

GHSA-C6H8-QR22-65QM

GSD-2007-2683

Tags

Sightings

Nomenclature