diff options
| author | Matthias Andree <matthias.andree@gmx.de> | 2011-06-07 00:21:47 +0200 |
|---|---|---|
| committer | Matthias Andree <matthias.andree@gmx.de> | 2011-06-07 00:21:47 +0200 |
| commit | 284f73ad6dea66b7f553f19b1ca3db62831b3ad4 (patch) | |
| tree | c24cc59f3d71500fea4dac66d041093838010018 /website/security.html | |
| parent | a27bf9ec2bc3220e53792fb9b204ed0d81d3c681 (diff) | |
| parent | ca33378e6f2b88dbab8beac0b72da9d45e2c3338 (diff) | |
| download | fetchmail-284f73ad6dea66b7f553f19b1ca3db62831b3ad4.tar.gz fetchmail-284f73ad6dea66b7f553f19b1ca3db62831b3ad4.tar.bz2 fetchmail-284f73ad6dea66b7f553f19b1ca3db62831b3ad4.zip | |
Merge branch 'legacy_63' of gitorious.org:fetchmail/fetchmail into legacy_63
Diffstat (limited to 'website/security.html')
| -rw-r--r-- | website/security.html | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/website/security.html b/website/security.html index 7f823fc9..ec9df3a8 100644 --- a/website/security.html +++ b/website/security.html @@ -14,7 +14,7 @@ <table width="100%" cellpadding="0" summary="Canned page header"> <tr> <td>Fetchmail</td> -<td align="right"><!-- update date -->2010-05-06</td> +<td align="right"><!-- update date -->2011-06-06</td> </tr> </table> </div> @@ -45,6 +45,12 @@ some of the problems mentioned below, even if they aren't mentioned in the security announcements:</p> <ul> + <li><a name="cve-2011-1947" + href="http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1947">CVE-2011-1947:</a> + Fetchmail <a href="fetchmail-SA-2011-01.txt"> could hang for + indefinite amounts of time during STARTTLS negotiations</a>, + causing mail fetches to stall. This was a long-standing bug + fixed in release 6.3.20.</li> <li><a name="fetchmail-EN-2010-03">EN-2010-03</a>: Fetchmail <a href="fetchmail-EN-2010-03.txt">fails POP3/IMAP authentication by not performing SASL AUTH properly.</a> This was a long-standing bug fixed in release |