A flaw was found in mutt before 1.10.1. There is a path traversal flaw in IMAP header caching. References: http://www.mutt.org/news.html https://gitlab.com/muttmua/mutt/blob/master/ChangeLog
Created attachment 1459537 [details] upstream patch
Created mutt tracking bugs for this issue: Affects: fedora-all [bug 1602082]
Upstream Patch: https://gitlab.com/muttmua/mutt/commit/31eef6c766f47df8281942d19f76e35f475c781d
Setting rhel-6 as wontfix and closing tracker. Our policy specifies that we may not fix moderate flaws for rhel-6.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:1126 https://access.redhat.com/errata/RHSA-2020:1126
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2018-14355