Launchpad.net

CVE 2014-7844

BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address.

CVE-2014-7844 (Candidate) is related to these bugs:

Bug #1414684: bsd-mailx no longer supports sendmail options, thus breaking existing scripts (like Bootmail)

Summary				In	Importance	Status
	1414684	bsd-mailx no longer supports sendmail options, thus breaking existing scripts (like Bootmail)		bsd-mailx (Ubuntu)	Undecided	Won't Fix
	1414684	bsd-mailx no longer supports sendmail options, thus breaking existing scripts (like Bootmail)		bsd-mailx (Debian)	Unknown	Fix Released

Bug #1447066: Security vulnerabilities in heirloom-mailx 12.5-2 affecting trusty and utopic

		In	Importance	Status
1447066	Security vulnerabilities in heirloom-mailx 12.5-2 affecting trusty and utopic	heirloom-mailx (Ubuntu)	Undecided	Fix Released
1447066	Security vulnerabilities in heirloom-mailx 12.5-2 affecting trusty and utopic	heirloom-mailx (Ubuntu Precise)	Medium	Won't Fix
1447066	Security vulnerabilities in heirloom-mailx 12.5-2 affecting trusty and utopic	heirloom-mailx (Ubuntu Vivid)	Undecided	Fix Released
1447066	Security vulnerabilities in heirloom-mailx 12.5-2 affecting trusty and utopic	heirloom-mailx (Ubuntu Trusty)	Medium	Incomplete
1447066	Security vulnerabilities in heirloom-mailx 12.5-2 affecting trusty and utopic	heirloom-mailx (Ubuntu Utopic)	Medium	Won't Fix

See the

CVE page on Mitre.org for more details.