Required CVE Record Information
Description
Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate.
References 7 Total
- http://www.mutt.org
- http://lists.mutt.org/pipermail/mutt-announce/Week-of-Mon-20200608/000022.html
- https://bugs.gentoo.org/728300
- lists.opensuse.org: openSUSE-SU-2020:0903 vendor-advisory
- lists.opensuse.org: openSUSE-SU-2020:0915 vendor-advisory
- usn.ubuntu.com: USN-4401-1 vendor-advisory
- security.gentoo.org: GLSA-202007-57 vendor-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 7 Total
- http://www.mutt.org x_transferred
- http://lists.mutt.org/pipermail/mutt-announce/Week-of-Mon-20200608/000022.html x_transferred
- https://bugs.gentoo.org/728300 x_transferred
- lists.opensuse.org: openSUSE-SU-2020:0903 vendor-advisoryx_transferred
- lists.opensuse.org: openSUSE-SU-2020:0915 vendor-advisoryx_transferred
- usn.ubuntu.com: USN-4401-1 vendor-advisoryx_transferred
- security.gentoo.org: GLSA-202007-57 vendor-advisoryx_transferred