The source file 'ftp://ftp.cac.washington.edu/imap/imap-2004g.tar.Z' is moved on the server, and according to the imap-README file in the same dir, it should be considered vulnerable. The file suggests an upgrade to imap-2006h.tar.Z, which I tried with an ebuild version bump (removed the patch) and worked. Reproducible: Always Steps to Reproduce:
The known vulnerability has been patched ages ago in Gentoo (see Bug 108206). If you mean something else, then clarify.
No vulnerablilty then indeed (I didn't look into it). There still is a moved source file and/or a version bump.
uw-mailutils-2007b is currently in the tree. if that does not satisfy this bug - please reopen with a better description. thanks for your efforts.