[ubuntu/trusty-security] evolution-data-server 3.10.4-0ubuntu1.6 (Accepted)
Mike Salvatore
mike.salvatore at canonical.com
Thu Jul 26 12:34:22 UTC 2018
evolution-data-server (3.10.4-0ubuntu1.6) trusty-security; urgency=medium
* SECURITY UPDATE: Unexpected STARTTLS downgrade
- debian/patches/CVE-2016-10727.patch: When a user has setup the STARTTLS
encryption method, but the server doesn't support it, then an error should
be shown to the user, instead of using unsecure connection. In
camel/providers/imapx/camel-imax-server.c
- CVE-2016-10727
Date: 2018-07-25 19:10:12.345352+00:00
Changed-By: Mike Salvatore <mike.salvatore at canonical.com>
https://launchpad.net/ubuntu/+source/evolution-data-server/3.10.4-0ubuntu1.6
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list