VDB

GCVE-110-MAGEIA-2025-238

GCVE-110-MAGEIA-2025-238
Advisory Published
Vulnetix · Advisory published October 14, 2025
It was discovered that fetchmail's SMTP client, when configured to authenticate, is susceptible to a protocol violation where, when a trusted but malicious or malfunctioning SMTP server responds to an authentication request with a "334" code but without a following blank on the line, it will attempt to start reading from memory address 0x1 to parse the server's SASL challenge. This event will usually cause a crash of fetchmail (CVE-2025-61962).

Affected Products

VendorProductVersionsPlatforms
Mageiafetchmail6.5.6-1.mga9 (unaffected), 0 (affected)

Browse GCVE Records

73,040 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›