Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 10 Mar 2014 14:31:34 -0600
From: "Vincent Danen" <vdanen@...hat.com>
To: "OSS Security List" <oss-security@...ts.openwall.com>
Subject: CVE request: claws-mail vcalendar plugin stores user/password in
 cleartext

Subject pretty much says it all.  It's not a very exciting flaw but was brought to our attention.

References:

http://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=3099
https://bugzilla.redhat.com/show_bug.cgi?id=1074683

-- 
Vincent Danen / Red Hat Security Response Team
Download attachment "signature.asc" of type "application/pgp-signature" (711 bytes)

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.