CVE 2021-38373
In KDE KMail 19.12.3 (aka 5.13.3), the SMTP STARTTLS option is not honored (and cleartext messages are sent) unless "Server requires authentication" is checked.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- MISC: https://bugs.kde.org/s...
- MISC: https://nostarttls.sec...
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
73416ba
(Get the code!)