279 matches found
Fedora 32 : claws-mail (2020-2def860ce7)
Security fix for CVE-2020-15917 STARTTLS protocol violation. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing addition...
Fedora 31 : claws-mail (2020-fe6c1a9c16)
Security fix for CVE-2020-15917 STARTTLS protocol violation. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing addition...
Security update for claws-mail (moderate)
openSUSE Security Update: Security update for claws-mail Announcement ID: openSUSE-SU-2020:1139-1 Rating: moderate References: 1174457 Cross-References: CVE-2020-15917 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...
[SECURITY] Fedora 32 Update: claws-mail-3.17.6-1.fc32
Claws Mail is an email client and news reader, based on GTK+, featuring quick response, graceful and sophisticated interface, easy configuration, intuitive operation, abundant features, and extensibility...
[SECURITY] Fedora 31 Update: claws-mail-3.17.6-1.fc31
Claws Mail is an email client and news reader, based on GTK+, featuring quick response, graceful and sophisticated interface, easy configuration, intuitive operation, abundant features, and extensibility...
Fedora: Security Advisory for claws-mail (FEDORA-2020-2def860ce7)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for claws-mail (FEDORA-2020-fe6c1a9c16)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2020:1116-1 Security update for claws-mail
This update for claws-mail fixes the following issues: - CVE-2020-15917: Fixed an improper handling of suffix data after STARTTLS is mishandled boo1174457...
Security update for claws-mail (moderate)
openSUSE Security Update: Security update for claws-mail Announcement ID: openSUSE-SU-2020:1116-1 Rating: moderate References: 1174457 Cross-References: CVE-2020-15917 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
GLSA-202007-56 : Claws Mail: Improper STARTTLS handling
The remote host is affected by the vulnerability described in GLSA-202007-56 Claws Mail: Improper STARTTLS handling It was discovered that Claws Mail was not properly handling state within the STARTTLS protocol handshake. Impact : There may be a breach of integrity or confidentiality in connectio...
Claws Mail Stack Depletion Vulnerability
Claws Mail is an open source email client and news aggregator written in the GTK+ language. A security vulnerability exists in imapscantreerecursive in Claws Mail 3.17.6 and earlier versions. An attacker can exploit this vulnerability with the help of a malicious IMAP server to cause Claws Mail t...
CVE-2020-16094
In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...
DEBIAN-CVE-2020-16094
In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...
CVE-2020-16094
In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...
Design/Logic Flaw
In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...
CVE-2020-16094
In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...
UBUNTU-CVE-2020-16094
In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...
CVE-2020-16094
In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...
CVE-2020-16094
CVE-2020-16094 affects Claws Mail up to version 3.17.6. The vulnerability is caused by unlimited recursion in imap_scan_tree_recursive during a folder-tree rebuild, leading to stack consumption. In practice, a malicious IMAP server can trigger excessive resource usage. Public details in connected...
CVE-2020-16094
In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...