Описание
ELSA-2011-0959: mutt security update (MODERATE)
[1.5.20-2.20091214hg736b6a.el6_1.1]
- Fixed hostname verification of x.509 certificates. Resolves: #716889 (CVE-2011-1429)
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
mutt
1.5.20-2.20091214hg736b6a.el6_1.1
Oracle Linux i686
mutt
1.5.20-2.20091214hg736b6a.el6_1.1
Связанные CVE
Связанные уязвимости
Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766.
Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766.
Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766.
Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766.
Mutt does not verify that the smtps server hostname matches the domain ...