[SECURITY] [DLA 2329-1] libetpan security update
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2329-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/
August 16, 2020 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------
Package : libetpan
Version : 1.6-3+deb9u1
CVE ID : CVE-2020-15953
Debian Bug : 966647
In libEtPan, a mail library, a STARTTLS response injection was
discovered that affects IMAP, SMTP, and POP3.
For Debian 9 stretch, this problem has been fixed in version
1.6-3+deb9u1.
We recommend that you upgrade your libetpan packages.
For the detailed security status of libetpan please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libetpan
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEOvp1f6xuoR0v9F3wiNJCh6LYmLEFAl85H84ACgkQiNJCh6LY
mLHG0g/+NnU7F78jAksDDCi8f8iiSC+ovN+5zhnorapx0fyTBHPaP30jkCRm6z3h
qiniWtm15sEiKP3OXohbbyiM4JpFNXrxqPpAdXw6Bioe7hiBxzp6AFRzKgpDsu/d
ZlIeSM5+YFLR2vAUvvLlvSMycORcAV5SeSsNs9FqC8hR7Yhfetae5SnYYtgOUi+S
aUIJizg3dCKPVvXRbmGGsqWiIKf+BQTXCNTkC6A5k/ZkbSYecICmM9LQhPImHqPC
21F9dQiPQJH1pWnEUfzLbyHUBQV38qL7I7xZT6wC9Bb1++cbGNOqPLqizw70xOOY
Hfd1flKNqbOdZTNSYUL4oa+7dfQH6w9lv0fXX6KvwzkBT7dhM5q03Fhsnr8PM/1N
Xqw1A0Vt4m5QGECws6NUsZ06B9dWc7zkEgks3JIQuVK2OOMbvrOZaeKA7+4uy7W4
8kFqjC6rJpDv7635z/A8i4PvYlklYd1HYGWW5A/gURUjp7bdWeDU4dpW2XzmWc72
09LJgblBnAuGUmb/jz9a/5XOlsJ//MS1ocKTUQh9RH/ddD1q6id7KdEK4/XrHOwj
0CkMiTny1Zcmdg7hcgc09hILkJRWY6NB9sXJzfzsqeGM4dJjlHqByt1WBe7tO9Gy
aZONrjE1RyC7f5CUpSEzrro3vxEFB8sscOt+oMcRJ0no3pUL9wk=
=4Jx3
-----END PGP SIGNATURE-----
Reply to: