[ubuntu/xenial-security] evolution-data-server 3.18.5-1ubuntu1.1 (Accepted)
Mike Salvatore
mike.salvatore at canonical.com
Thu Jul 26 12:34:23 UTC 2018
evolution-data-server (3.18.5-1ubuntu1.1) xenial-security; urgency=medium
* SECURITY UPDATE: Unexpected STARTTLS downgrade
- debian/patches/CVE-2016-10727.patch: When a user has setup the STARTTLS
encryption method, but the server doesn't support it, then an error should
be shown to the user, instead of using unsecure connection. In
camel/providers/imapx/camel-imax-server.c
- CVE-2016-10727
Date: 2018-07-25 19:09:11.708965+00:00
Changed-By: Mike Salvatore <mike.salvatore at canonical.com>
https://launchpad.net/ubuntu/+source/evolution-data-server/3.18.5-1ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list