CVE-2022-4121

Published: Jan 17, 2023Modified: Nov 3, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In libetpan a null pointer dereference in mailimap_mailbox_data_status_free in low-level/imap/mailimap_types.c was found that could lead to a remote denial of service or other potential consequences.

Affected (1)

Products: Libetpan Project: Libetpan

Libetpan Project

1 product

Libetpan

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Libetpan Project Libetpan	All versions

Related CWEs

CWE-476

NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

References (5)

https://github.com/dinhvh/libetpan/commit/5c9eb6b6ba64c4eb927d7a902317410181aacbba

Source: patrick@puiterwijk.org

PatchThird Party Advisory

https://github.com/dinhvh/libetpan/issues/420

Source: patrick@puiterwijk.org

ExploitIssue TrackingPatchThird Party Advisory

https://github.com/dinhvh/libetpan/commit/5c9eb6b6ba64c4eb927d7a902317410181aacbba

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://github.com/dinhvh/libetpan/issues/420

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitIssue TrackingPatchThird Party Advisory

https://lists.debian.org/debian-lts-announce/2025/07/msg00018.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.