Note:
This project will be discontinued after December 13, 2021. [more]
2019-09-08
IMAPFilter through 2.6.12 does not validate the hostname in an SSL certificate.
Products | Debian_linux, Fedora, Imapfilter, Backports_sle, Leap |
Type | Improper Certificate Validation (CWE-295) |
First patch | - None (likely due to unavailable code) |
Links |
• http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00042.html
• https://github.com/lefcha/imapfilter/issues/142 • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IQUH2TOCNEST7JB2RJVVJT3RZS5XZCFZ/ • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GBNDFMAIUA6PQMV2P6OKIP7JZQEWX7D2/ • https://lists.debian.org/debian-lts-announce/2019/10/msg00040.html |