Updated imapsync package fixes CVE-2014-2014
Publication date: 27 Feb 2014Modification date: 27 Feb 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-2014
Description
Updated imapsync package fixes security vulnerability:
In imapsync before 1.584, a certificate verification failure when using the
--tls option results in imapsync attempting a cleartext login (CVE-2014-2014).
References
SRPMS
4/core
- imapsync-1.584-1.mga4
3/core
- imapsync-1.584-1.mga3