Oval Definition:	oval:org.opensuse.security:def:202024661
Revision Date: 2022-06-30 Version: 1 Title: CVE-2020-24661 Description: GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates (e.g., self-signed certificates) when the client system is not configured to use a system-provided PKCS#11 store. This allows a meddler in the middle to present a different invalid certificate to intercept incoming and outgoing mail. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2020-24661 SUSE CVE-2020-24661 Platform(s): openSUSE Tumbleweed Product(s): Definition Synopsis openSUSE Tumbleweed is installed AND Package Information geary-40.0-1.4 is installed OR geary-lang-40.0-1.4 is installed
BACK