[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 2300-1] kdepim-runtime security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : kdepim-runtime
Version        : 4:16.04.2-2+deb9u1
CVE ID         : CVE-2020-15954

It was discovered that there was an issue where kdepim-runtime would
default to using unencrypted POP3 communication despite the UI
indicating that encryption was in use.

For Debian 9 "Stretch", this issue has been fixed in kdepim-runtime version
4:16.04.2-2+deb9u1.

We recommend that you upgrade your kdepim-runtime packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=vWeC
-----END PGP SIGNATURE-----


Reply to: