CVE-2004-2771

Name	CVE-2004-2771
Description	The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in an email address.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DLA-114-1, DSA-3105-1
Debian Bugs	278748, 773417

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
bsd-mailx (PTS)	buster	8.1.2-0.20180807cvs-1	fixed
	bullseye	8.1.2-0.20180807cvs-2	fixed
	sid, trixie, bookworm	8.1.2-0.20220412cvs-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
bsd-mailx	source	(unstable)	8.1.2-0.20071201cvs-1
heirloom-mailx	source	squeeze	12.4-2+deb6u1		DLA-114-1
heirloom-mailx	source	wheezy	12.5-2+deb7u1		DSA-3105-1
heirloom-mailx	source	(unstable)	12.5-3.1			773417
mailx	source	(unstable)	1:8.1.2-0.20040524cvs-2			278748