AVG-2243 log

Package claws-mail
Status Fixed
Severity Medium
Type insufficient validation
Affected 3.17.8-2
Fixed 3.18.0-1
Current 4.1.1-1 [extra]
Ticket None
Created Fri Jul 30 22:33:58 2021
Issue Severity Remote Type Description
CVE-2021-37746 Medium Yes Insufficient validation
textview_uri_security_check in textview.c in Claws Mail before 3.18.0, and Sylpheed through 3.7.0, does not have sufficient link checks before accepting a click.