VDB
GCVE-110-MAGEIA-2018-136
GCVE-110-MAGEIA-2018-136
Advisory Published
Apache Commons-Email, from version 1.0 to 1.4 inclusive, does not properly
validate bounce addresses. If a user of Commons-Email (typically an
application programmer) passes unvalidated input as the so-called "Bounce
Address", and that input contains line-breaks, then the email details
(recipients, contents, etc.) might be manipulated (CVE-2018-1294).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | apache-commons-email | 1.5-1.mga6 (unaffected), 0 (affected), 1.5-1.mga6 (unaffected), 0 (affected) | — |
| Mageia | supertuxkart | 0.9.3-1.mga6 (unaffected), 0 (affected) | — |
Aliases
References
Browse GCVE Records
72,580 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.