Advisories ยป MGASA-2014-0106

Updated imapsync package fixes CVE-2014-2014

Publication date: 27 Feb 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-2014

Description

Updated imapsync package fixes security vulnerability:

In imapsync before 1.584, a certificate verification failure when using the
--tls option results in imapsync attempting a cleartext login (CVE-2014-2014).
                

References

SRPMS

3/core

4/core