http://bugzilla.suse.com/show_bug.cgi?id=986534 http://bugzilla.suse.com/show_bug.cgi?id=986534#c2 Libor Pechacek changed: What |Removed |Added ---------------------------------------------------------------------------- Flags|needinfo?(lpechacek@suse.co | |m) | --- Comment #2 from Libor Pechacek --- (In reply to Bernhard Wiedemann from comment #1)

Can you still reproduce it?

Yes. Also with the latest snapshot. Steps to reproduce: 1) create muttrc for IMAPS accesss $ cat > muttrc set spoolfile=imaps://imap.suse.de/INBOX set imap_user=lpechacek set imap_pass="ThePassword" source /etc/skel/.muttrc 2) run mutt with the above config $ mutt -F muttrc 3) try to display any message body

Does it need a special message to crash it?

Don't think so. IOW I haven't found a message Mutt would display for me. ;) -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=986534 http://bugzilla.suse.com/show_bug.cgi?id=986534#c3 --- Comment #3 from Dr. Werner Fink --- See https://github.com/neomutt/neomutt/issues/73 -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=986534 http://bugzilla.suse.com/show_bug.cgi?id=986534#c6 --- Comment #6 from Libor Pechacek --- Another possibly useful data point - the crash happens only with i586 version. x86_64 one works fine. Even installing i586 package on an x86_64 system is enough to replicate the bug. For the record, I have tried running Mutt with Valgrind and GCC Address Sanitizer but it still crashes exactly at the same place. -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=986534 http://bugzilla.suse.com/show_bug.cgi?id=986534#c7 --- Comment #7 from Richard Russon --- Hmm... The log cuts out before notmuch manages to log anything! Thanks, anyway.

the crash happens only with i586 version. x86_64 one works fine.

Ah, now that's interesting. There was a strange line of code I noticed -- it might be nothing.

installing i586 package on an x86_64 system is enough to replicate the bug.

I'll give that a try. I'm a bit busy at the moment -- trying to create a new release -- but I'll find and fix this bug soon. -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=986534 http://bugzilla.suse.com/show_bug.cgi?id=986534#c9 --- Comment #9 from Richard Russon --- Created attachment 683610 --> http://bugzilla.suse.com/attachment.cgi?id=683610&action=edit patch to fix crash -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=986534 http://bugzilla.suse.com/show_bug.cgi?id=986534#c11 Dr. Werner Fink changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |FIXED --- Comment #11 from Dr. Werner Fink --- Fixed -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=986534 Swamp Workflow Management changed: What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|ibs:running:8080:important | -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=986534 http://bugzilla.suse.com/show_bug.cgi?id=986534#c13 --- Comment #13 from Swamp Workflow Management --- openSUSE-SU-2019:0052-1: An update that solves 16 vulnerabilities and has 6 fixes is now available. Category: security (important) Bug References: 1061343,1094717,1101428,1101566,1101567,1101568,1101569,1101570,1101571,1101573,1101576,1101577,1101578,1101581,1101582,1101583,1101588,1101589,1120935,980830,982129,986534 CVE References: CVE-2014-9116,CVE-2018-14349,CVE-2018-14350,CVE-2018-14351,CVE-2018-14352,CVE-2018-14353,CVE-2018-14354,CVE-2018-14355,CVE-2018-14356,CVE-2018-14357,CVE-2018-14358,CVE-2018-14359,CVE-2018-14360,CVE-2018-14361,CVE-2018-14362,CVE-2018-14363 Sources used: openSUSE Leap 42.3 (src): mutt-1.10.1-2.5.1 -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=986534 http://bugzilla.suse.com/show_bug.cgi?id=986534#c14 --- Comment #14 from Swamp Workflow Management --- SUSE-SU-2019:1196-1: An update that solves 16 vulnerabilities and has 5 fixes is now available. Category: security (important) Bug References: 1061343,1094717,1101428,1101566,1101567,1101568,1101569,1101570,1101571,1101573,1101576,1101577,1101578,1101581,1101582,1101583,1101588,1101589,980830,982129,986534 CVE References: CVE-2014-9116,CVE-2018-14349,CVE-2018-14350,CVE-2018-14351,CVE-2018-14352,CVE-2018-14353,CVE-2018-14354,CVE-2018-14355,CVE-2018-14356,CVE-2018-14357,CVE-2018-14358,CVE-2018-14359,CVE-2018-14360,CVE-2018-14361,CVE-2018-14362,CVE-2018-14363 Sources used: SUSE Linux Enterprise Server 12-SP3 (src): mutt-1.10.1-55.6.1 SUSE Linux Enterprise Desktop 12-SP3 (src): mutt-1.10.1-55.6.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination. -- You are receiving this mail because: You are on the CC list for the bug.