File bsc907453-CVE-2014-9116-jessie.patch of Package mutt.8080
This patch solves the issue raised by CVE-2014-9116 in bug 771125.
We correctly redefine what are the whitespace characters as per RFC5322; by
doing so we prevent mutt_substrdup from being used in a way that could lead to
The lib.c part was written by Antonio Radici <email@example.com> to prevent
crashes due to this kind of bugs from happening again.
The wheezy version of this patch is slightly different, therefore this patch
has -jessie prefixed in its name.
lib.c | 3 +++
1 file changed, 3 insertions(+)
+++ lib.c 2018-07-05 08:26:51.564728125 +0000
@@ -819,6 +819,9 @@ char *mutt_substrdup (const char *begin,
+ if (end != NULL && end < begin)
+ return NULL;
len = end - begin;