mutt 1.10.1-2.1ubuntu0.1 source package in Ubuntu


mutt (1.10.1-2.1ubuntu0.1) eoan-security; urgency=medium

  * SECURITY UPDATE: Man-in-the-middle attack
    - debian/patches/CVE-2020-14093.patch: prevent
      possible IMAP MITM via PREAUTH response in imap/imap.c.
    - CVE-2020-14093
  * SECURITY UPDATE: Connection even if the user rejects an
    expired intermediate certificate
    - debian/patches/CVE-2020-14154-1.patch: fix GnuTLS tls_verify_peers()
      checking in mutt_ssl_gnutls.c.
    - debian/patches/CVE-2020-14154-2.patch: Abort GnuTLS certificate if a
      cert in the chain is rejected in mutt_ssl_gnutls.c.
    - debian/patches/CVE-2020-14154-3.patch: fix GnuTLS interactive prompt
      short-circuiting in mutt_ssl_gnutls.c.
    - CVE-2020-14154

 -- <email address hidden> (Leonidas S. Barbosa)  Thu, 18 Jun 2020 09:50:12 -0300

Upload details

Uploaded by:
Leonidas S. Barbosa
Uploaded to:
Original maintainer:
Ubuntu Developers
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section


File Size SHA-256 Checksum
mutt_1.10.1.orig.tar.gz 4.1 MiB 734a3883158ec3d180cf6538d8bd7f685ce641d2cdef657aa0038f76e79a54a0
mutt_1.10.1.orig.tar.gz.asc 833 bytes 0ce9cb23947de6b0f35f7fc5f6b228c04c679e09cc59aaf77f8484187dacdf40
mutt_1.10.1-2.1ubuntu0.1.debian.tar.xz 64.6 KiB e82f166f6becb5c9d02db0363fed817f96f9f938c9fd0ed52ce4cf9d70751f52
mutt_1.10.1-2.1ubuntu0.1.dsc 2.4 KiB 6a2ae090b03371dc94cfc90737694de8d6e97b0992a046a2e0e7d9de0c7b0065

View changes file

Binary packages built by this source

mutt: No summary available for mutt in ubuntu eoan.

No description available for mutt in ubuntu eoan.

mutt-dbgsym: No summary available for mutt-dbgsym in ubuntu eoan.

No description available for mutt-dbgsym in ubuntu eoan.