CVE-2017-14230

NameCVE-2017-14230
DescriptionIn the mboxlist_do_find function in imap/mboxlist.c in Cyrus IMAP before 3.0.4, an off-by-one error in prefix calculation for the LIST command caused use of uninitialized memory, which might allow remote attackers to obtain sensitive information or cause a denial of service (daemon crash) via a 'LIST "" "Other Users"' command.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
cyrus-imapd (PTS)stretch (security), stretch (lts), stretch2.5.10-3+deb9u3fixed
buster, buster (lts)3.0.8-6+deb10u7fixed
buster (security)3.0.8-6+deb10u3fixed
bullseye3.2.6-2+deb11u2fixed
bullseye (security)3.2.6-2+deb11u4fixed
bookworm3.6.1-4+deb12u3fixed
bookworm (security)3.6.1-4+deb12u2fixed
sid3.10.0-1fixed
cyrus-imapd-2.4 (PTS)jessie2.4.17+nocaldav-0+deb8u2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
cyrus-imapdsource(unstable)(not affected)
cyrus-imapd-2.4source(unstable)(not affected)

Notes

- cyrus-imapd <not-affected> (Vulnerable code introduced later)
- cyrus-imapd-2.4 <not-affected> (Vulnerable code introduced later)
Fixed by: https://github.com/cyrusimap/cyrus-imapd/commit/6bd33275368edfa71ae117de895488584678ac79
Introduced by: https://github.com/cyrusimap/cyrus-imapd/commit/1fe918087237f55e09a37fa414bf988873739021 (cyrus-imapd-3.0.0-beta1)
https://github.com/cyrusimap/cyrus-imapd/issues/2132

Search for package or bug name: Reporting problems