FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-19 19:12:13 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
36f9ac43-b2ac-11e3-8752-080027ef73ec	mail/trojita -- may leak mail contents (not user credentials) over unencrypted connection Jan KundrÃ¡t reports: An SSL stripping vulnerability was discovered in TrojitÃ¡, a fast Qt IMAP e-mail client. User's credentials are never leaked, but if a user tries to send an e-mail, the automatic saving into the "sent" or "draft" folders could happen over a plaintext connection even if the user's preferences specify STARTTLS as a requirement. Discovery 2014-03-20 Entry 2014-03-23 trojita < 0.4.1 CVE-2014-2567 http://jkt.flaska.net/blog/Trojita_0_4_1__a_security_update_for_CVE_2014_2567.html

VuXML ID

Description

36f9ac43-b2ac-11e3-8752-080027ef73ec

mail/trojita -- may leak mail contents (not user credentials) over unencrypted connection

Jan KundrÃ¡t reports:

An SSL stripping vulnerability was discovered in TrojitÃ¡, a fast Qt IMAP e-mail client. User's credentials are never leaked, but if a user tries to send an e-mail, the automatic saving into the "sent" or "draft" folders could happen over a plaintext connection even if the user's preferences specify STARTTLS as a requirement.

Discovery 2014-03-20
Entry 2014-03-23
trojita

< 0.4.1

CVE-2014-2567
http://jkt.flaska.net/blog/Trojita_0_4_1__a_security_update_for_CVE_2014_2567.html