[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-39272/fetchmail
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Sep 15 20:05:42 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
12ca9c81 by Salvatore Bonaccorso at 2021-09-15T21:05:06+02:00
Add fixed version for CVE-2021-39272/fetchmail
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4023,7 +4023,7 @@ CVE-2021-39274 (In XeroSecurity Sn1per 9.0 (free version), insecure directory pe
CVE-2021-39273 (In XeroSecurity Sn1per 9.0 (free version), insecure permissions (0777) ...)
NOT-FOR-US: XeroSecurity Sn1per
CVE-2021-39272 (Fetchmail before 6.4.22 fails to enforce STARTTLS session encryption i ...)
- - fetchmail <unfixed> (bug #993163)
+ - fetchmail 6.4.22-1 (bug #993163)
[bullseye] - fetchmail <no-dsa> (Minor issue; safe recommendations exists, implicit TLS, "ssl" mode exist)
[buster] - fetchmail <no-dsa> (Minor issue; safe recommendations exists, implicit TLS, "ssl" mode exist)
[stretch] - fetchmail <no-dsa> (Minor issue; safe recommendations exists, implicit TLS, "ssl" mode exist)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12ca9c819c755bd7693900c7c0d3eb4cad7664ad
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12ca9c819c755bd7693900c7c0d3eb4cad7664ad
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210915/50cc2c7d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list