Описание
ELSA-2011-0959: mutt security update (MODERATE)
[1.5.20-2.20091214hg736b6a.el6_1.1]
- Fixed hostname verification of x.509 certificates. Resolves: #716889 (CVE-2011-1429)
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
mutt
1.5.20-2.20091214hg736b6a.el6_1.1
Oracle Linux i686
mutt
1.5.20-2.20091214hg736b6a.el6_1.1
Связанные CVE
Связанные уязвимости
Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766.
Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766.
Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766.
Mutt does not verify that the smtps server hostname matches the domain ...
Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766.