Procmail
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Procmail.
By the Year
In 2025 there have been 0 vulnerabilities in Procmail. Procmail did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2025 | 0 | 0.00 |
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Procmail vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Procmail Security Vulnerabilities
Heap-based buffer overflow in formisc.c in formail in procmail 3.22
CVE-2014-3618
- September 08, 2014
Heap-based buffer overflow in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted email header, related to "unbalanced quotes."
Buffer Overflow
Buffer overflow in procmail before version 3.12
CVE-1999-0439
- April 05, 1999
Buffer overflow in procmail before version 3.12 allows remote or local attackers to execute commands via expansions in the procmailrc configuration file.
A race condition in how procmail handles .procmailrc files
CVE-1999-0475
- April 05, 1999
A race condition in how procmail handles .procmailrc files allows a local user to read arbitrary files available to the user who is running procmail.