| Release | Version |
|---|---|
| jessie | 3.5.0~beta1~r3426-1 |
| stretch | 3.5.1-2 |
| buster | 3.7.0-4 |
| bullseye | 3.7.0-8 |
| bookworm | 3.8.0~beta1-1 |
| sid | 3.8.0~beta1-1 |
| Bug | jessie | stretch | buster | bullseye | bookworm | sid | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-37746 | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | textview_uri_security_check in textview.c in Claws Mail before 3.18.0, ... |
| Bug | jessie | stretch | buster | bullseye | bookworm | sid | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-17517 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | libsylph/utils.c in Sylpheed through 3.6 does not validate strings bef ... |
| CVE-2007-1267 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | Sylpheed 2.2.7 and earlier does not properly use the --status-fd argum ... |
| Bug | Description |
|---|---|
| CVE-2007-2958 | Format string vulnerability in the inc_put_error function in src/inc.c ... |
| CVE-2006-2920 | Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote att ... |
| CVE-2005-3354 | Stack-based buffer overflow in the ldif_get_line function in ldif.c of ... |
| CVE-2005-0926 | Buffer overflow in Sylpheed before 1.0.4 allows remote attackers to ca ... |
| CVE-2005-0667 | Buffer overflow in Sylpheed before 1.0.3 and other versions before 1.9 ... |
| DSA / DLA | Description |
|---|---|
| DSA-906-1 | sylpheed - several |