IMAPFilter through 2.6.12 does not validate the hostname in an SSL certificate.
References
| Link | Resource |
|---|---|
| https://bugs.debian.org/939702 | Issue Tracking |
| https://github.com/lefcha/imapfilter/issues/142 | Issue Tracking |
| https://lists.debian.org/debian-lts-announce/2019/10/msg00040.html | Issue Tracking Mailing List |
| https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GBNDFMAIUA6PQMV2P6OKIP7JZQEWX7D2/ | Issue Tracking Mailing List |
| https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IQUH2TOCNEST7JB2RJVVJT3RZS5XZCFZ/ | Issue Tracking Mailing List |
| http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00042.html | Issue Tracking Mailing List |
| http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00002.html | Issue Tracking Mailing List |
Advertisement
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Information
Published : 2019-09-08 09:15
Updated : 2023-02-15 19:02
NVD link : CVE-2016-10937
Mitre link : CVE-2016-10937
JSON object : View
CWE
CWE-295
Improper Certificate Validation
Advertisement
Products Affected
opensuse
- backports_sle
- leap
fedoraproject
- fedora
imapfilter_project
- imapfilter
debian
- debian_linux