You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa geary

Sigurnosni nedostatak programskog paketa geary

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2020-95f2c5cc25
2020-09-08 15:13:30.490624
——————————————————————————–

Name : geary
Product : Fedora 31
Version : 3.34.2
Release : 2.fc31
URL : https://wiki.gnome.org/Apps/Geary
Summary : A lightweight email program designed around conversations
Description :
Geary is a new email reader for GNOME designed to let you read your
email quickly and effortlessly. Its interface is based on
conversations, so you can easily read an entire discussion without
having to click from message to message. Geary is still in early
development and has limited features today, but we’re planning to add
drag-and-drop attachments, lightning-fast searching, multiple account
support and much more. Eventually we’d like Geary to have an
extensible plugin architecture so that developers will be able to add
all kinds of nifty features in a modular way.

——————————————————————————–
Update Information:

Add patch for CVE-2020-24661: Handling of pinned, invalid TLS certificates.
——————————————————————————–
ChangeLog:

* Sat Aug 29 2020 Thomas Moschny <thomas.moschny@gmx.de> – 3.34.2-2
– Add patch for CVE-2020-24661.
——————————————————————————–
References:

[ 1 ] Bug #1872970 – CVE-2020-24661 geary: mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1872970
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2020-95f2c5cc25’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

AutorBruno Varga
Cert idNCERT-REF-2020-09-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa php 7.3

Otkriveni su sigurnosni nedostaci u programskom paketu php 7.3 za operacijski sustav RHEL. Otkriveni nedostaci potencijalnim napadačima omogućuju izazivanje DoS...

Close