Description: "In imap_scan_tree_recursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree."
Ready to stable?
x86 stable
amd64 done all arches done
Please cleanup, thanks!
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=6a6b05206955fbc2ed8926c9b09f7cfdaca79b6b commit 6a6b05206955fbc2ed8926c9b09f7cfdaca79b6b Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2020-11-18 10:32:14 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2020-11-18 10:32:14 +0000 mail-client/claws-mail: Security cleanup Bug: https://bugs.gentoo.org/734328 Package-Manager: Portage-3.0.9, Repoman-3.0.2 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> mail-client/claws-mail/Manifest | 1 - mail-client/claws-mail/claws-mail-3.17.6-r1.ebuild | 215 --------------------- 2 files changed, 216 deletions(-)