CVE-2014-5444

描述

Geary before 0.6.3 does not present the user with a warning when a TLS certificate error is detected, which makes it easier for remote attackers to conduct man-in-the-middle attacks via a crafted certificate.

受影響套件(1)

• Debian/gearyfrom 0, < 0.6.3-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-5444