Alerts This Week
Warning Icon 1 924
Alerts This Week
Warning Icon 1 924

Slackware 14.2: 2020-329-01 Moderate: Mutt TLS Authentication Issue

slackware
Calendar Grey November 25, 2020
Dist Slackware Esm H88
The Mutt software patch for Gentoo addresses a faulty TLS validation, crucial for maintaining email security from version 15.0 through to the latest
New mutt packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue

Summary

Here are the details from the Slackware 14.2 ChangeLog: patches/packages/mutt-1.10.1-i586-2_slack14.2.txz: Rebuilt. Mutt had incorrect error handling when initially connecting to an IMAP server, which could result in an attempt to authenticate without enabling TLS. For more information, see: https://www.cve.org/CVERecord?id=CVE-2020-28896 (* Security fix *)

Topics%20covered

Topics Covered

security advisory security issue slackware patch update mutt TLS authentication

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 14.0: ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/mutt-1.10.1-i486-2_slack14.0.txz
Updated package for Slackware x86_64 14.0: ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/mutt-1.10.1-x86_64-2_slack14.0.txz
Updated package for Slackware 14.1: ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/mutt-1.10.1-i486-2_slack14.1.txz
Updated package for Slackware x86_64 14.1: ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/mutt-1.10.1-x86_64-2_slack14.1.txz
Updated package for Slackware 14.2: ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/mutt-1.10.1-i586-2_slack14.2.txz
Updated package for Slackware x86_64...

Read the Full Advisory

MD5 Signatures

Slackware 14.0 package: 0757390b5c35d6df301bc18d58cad386 mutt-1.10.1-i486-2_slack14.0.txz
Slackware x86_64 14.0 package: f054bf948e12e6ebea96ca5af6786880 mutt-1.10.1-x86_64-2_slack14.0.txz
Slackware 14.1 package: 8852e9368a2d1f15c31062d115125201 mutt-1.10.1-i486-2_slack14.1.txz
Slackware x86_64 14.1 package: 52467e39f92a4bbb3667ffc427f21783 mutt-1.10.1-x86_64-2_slack14.1.txz
Slackware 14.2 package: a5597fd597f990e1d95b4f51f7c86dbd mutt-1.10.1-i586-2_slack14.2.txz
Slackware x86_64 14.2 package: 55098bd701e18229fcfadd695a1a3ace mutt-1.10.1-x86_64-2_slack14.2.txz
Slackware -current package: c0ab7d3ff0b437adf87109cd4041ef1c n/mutt-2.0.2-i586-1.txz
Slackware x86_64 -current package: 5f4723ea14e2a79f1312d13fecc0b107 n/mutt-2.0.2-x86_64-1.txz

Topics%20covered

Topics Covered

security advisory security issue slackware patch update mutt TLS authentication

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg mutt-1.10.1-i586-2_slack14.2.txz

Your message here