CVE-2018-14363

An issue was discovered in NeoMutt before 2018-07-16. newsrc.c does not properly restrict ‘/’ characters that may have unsafe interaction with cache pathnames.

Date published : 2018-07-17

https://www.debian.org/security/2018/dsa-4277

https://github.com/neomutt/neomutt/commit/9bfab35522301794483f8f9ed60820bdec9be59e