logo
DATABASE RESOURCES PRICING ABOUT US

fetchmail -- STARTTLS bypass vulnerabilities

Description

Problem: In certain circumstances, fetchmail 6.4.21 and older would not encrypt the session using STARTTLS/STLS, and might not have cleared session state across the TLS negotiation.


Affected Package


OS OS Version Package Name Package Version
FreeBSD any fetchmail 6.4.22.r1

Related