MidnightBSD

Advisories for isync_project

CVE-2013-0289 MEDIUM

Isync 0.4 before 1.0.6, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
isync_project isync 0.5
isync_project isync 1.0.5
isync_project isync 1.0.2
isync_project isync 1.0.1
isync_project isync 0.8
isync_project isync 0.6
isync_project isync 1.0.4
isync_project isync 1.0.0
isync_project isync 1.0.3
isync_project isync 0.4
isync_project isync 0.7
CVE-2021-3578 HIGH

A flaw was found in mbsync before v1.3.6 and v1.4.2, where an unchecked pointer cast allows a malicious or compromised server to write an arbitrary integer value past the end of a heap-allocated structure by issuing an unexpected APPENDUID response. This could be plausibly exploited for remote code execution on the client.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-704,CWE-704,

Products Affected

Vendor Product Version
isync_project isync 1.4.1
debian debian_linux 9.0
isync_project isync *
fedoraproject fedora 33
fedoraproject fedora 34
isync_project isync 1.4.0
CVE-2021-3657 HIGH

A flaw was found in mbsync versions prior to 1.4.4. Due to inadequate handling of extremely large (>=2GiB) IMAP literals, malicious or compromised IMAP servers, and hypothetically even external email senders, could cause several different buffer overflows, which could conceivably be exploited for remote code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,CWE-119,

Products Affected

Vendor Product Version
redhat enterprise_linux 7.0
debian debian_linux 9.0
isync_project isync *
fedoraproject fedora 35
CVE-2021-44143 HIGH

A flaw was found in mbsync in isync 1.4.0 through 1.4.3. Due to an unchecked condition, a malicious or compromised IMAP server could use a crafted mail message that lacks headers (i.e., one that starts with an empty line) to provoke a heap overflow, which could conceivably be exploited for remote code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
debian debian_linux 10.0
debian debian_linux 9.0
isync_project isync *
fedoraproject fedora 34
fedoraproject fedora 35
debian debian_linux 11.0