Download
| Alert*
oval:org.secpod.oval:def:66699
Damian Poddebniak and Fabian Ising discovered two security issues in the STARTTLS handling of the Mutt mail client, which could enable MITM attacks. oval:org.secpod.oval:def:66700 Damian Poddebniak and Fabian Ising discovered two security issues in the STARTTLS handling of the Neomutt mail client, which could enable MITM attacks. oval:org.secpod.oval:def:70224 mutt: text-based mailreader supporting MIME, GPG, PGP and threading Several security issues were fixed in Mutt. oval:org.secpod.oval:def:2106305 Oracle Solaris 11 - ( CVE-2020-14093 ) oval:org.secpod.oval:def:89000597 This update for mutt fixes the following issues: - CVE-2020-14954: Fixed a response injection due to a STARTTLS buffering issue which was affecting IMAP, SMTP, and POP3 . - CVE-2020-14093: Fixed a potential IMAP Man-in-the-Middle attack via a PREAUTH response . - CVE-2020-14154: Fixed an issue where ... oval:org.secpod.oval:def:89000029 This update for mutt fixes the following issues: - CVE-2020-14954: Fixed a response injection due to a STARTTLS buffering issue which was affecting IMAP, SMTP, and POP3 . - CVE-2020-14093: Fixed a potential IMAP Man-in-the-Middle attack via a PREAUTH response . - CVE-2020-14154: Fixed an issue where ... oval:org.secpod.oval:def:89000609 This update for mutt fixes the following issues: - CVE-2020-14954: Fixed a response injection due to a STARTTLS buffering issue which was affecting IMAP, SMTP, and POP3 . - CVE-2020-14093: Fixed a potential IMAP Man-in-the-Middle attack via a PREAUTH response . - CVE-2020-14154: Fixed an issue where ... oval:org.secpod.oval:def:604894 Damian Poddebniak and Fabian Ising discovered two security issues in the STARTTLS handling of the Neomutt mail client, which could enable MITM attacks. oval:org.secpod.oval:def:705518 mutt: text-based mailreader supporting MIME, GPG, PGP and threading Several security issues were fixed in Mutt. oval:org.secpod.oval:def:604893 Damian Poddebniak and Fabian Ising discovered two security issues in the STARTTLS handling of the Mutt mail client, which could enable MITM attacks. oval:org.secpod.oval:def:1701074 Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response. Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate. Mutt before 1.14.4 and NeoMutt before 2020-06-19 ha ... |