{"id":"UBUNTU-CVE-2012-4507","details":"The strchr function in procmime.c in Claws Mail (aka claws-mail) 3.8.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted email.","modified":"2025-07-16T08:16:08.628631Z","published":"2012-10-22T23:55:00Z","withdrawn":"2025-07-18T16:42:47Z","upstream":["CVE-2012-4507"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2012-4507"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=862578"},{"type":"REPORT","url":"http://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=2743"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2012-4507"}],"affected":[{"package":{"name":"claws-mail","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/claws-mail@3.9.3-1ubuntu1?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.9.3-1ubuntu1"}]}],"versions":["3.8.1-2","3.9.2-2ubuntu1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-acpi-notifier"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-address-keeper"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-archiver-plugin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-attach-remover"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-attach-warner"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-bogofilter"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-bsfilter-plugin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-clamd-plugin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-dbg"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-doc"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-extra-plugins"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-fancy-plugin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-feeds-reader"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-fetchinfo-plugin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-gdata-plugin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-i18n"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-mailmbox-plugin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-multi-notifier"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-newmail-plugin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-pdf-viewer"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-perl-filter"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-pgpinline"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-pgpmime"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-plugins"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-python-plugin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-smime-plugin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-spam-report"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-spamassassin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-tnef-parser"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-tools"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"claws-mail-vcalendar-plugin"},{"binary_version":"3.9.3-1ubuntu1","binary_name":"libclaws-mail-dev"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2012/UBUNTU-CVE-2012-4507.json"}}],"schema_version":"1.7.3","severity":[{"type":"Ubuntu","score":"low"}]}