According to a recently released Ubuntu security notice, there are several vulnerabilities within Mutt Ubuntu. The following CVEs detail how an attacker could execute arbitrary code through Mutt incorrectly handling certain requests. In addition, certain inputs could provide access to, or even expose, sensitive information.
(CVE-2018-14350, CVE-2018-14352, CVE-2018-14354, CVE-2018-14359, CVE-2018-14358, CVE-2018-14353 , and CVE-2018-14357.)
Below are the effected versions:
- Ubuntu 18.04 LTS mutt – 9.4-3ubuntu0.1
- Ubuntu 16.04 LTS mutt – 5.24-1ubuntu0.1
- Ubuntu 14.04 LTS mutt – 5.21-6.4ubuntu2.2
Updates have been released to address these vulnerabilities. Cloud Management Suite has them within their patch database. Within the console, select these updates and simply target any device running the affected versions. You’ll also need to restart Mutt once the updates have been deployed.