-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2329-1 debian-...@lists.debian.org https://www.debian.org/lts/security/ August 16, 2020 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : libetpan Version : 1.6-3+deb9u1 CVE ID : CVE-2020-15953 Debian Bug : 966647 In libEtPan, a mail library, a STARTTLS response injection was discovered that affects IMAP, SMTP, and POP3. For Debian 9 stretch, this problem has been fixed in version 1.6-3+deb9u1. We recommend that you upgrade your libetpan packages. For the detailed security status of libetpan please refer to its security tracker page at: https://security-tracker.debian.org/tracker/libetpan Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEOvp1f6xuoR0v9F3wiNJCh6LYmLEFAl85H84ACgkQiNJCh6LY mLHG0g/+NnU7F78jAksDDCi8f8iiSC+ovN+5zhnorapx0fyTBHPaP30jkCRm6z3h qiniWtm15sEiKP3OXohbbyiM4JpFNXrxqPpAdXw6Bioe7hiBxzp6AFRzKgpDsu/d ZlIeSM5+YFLR2vAUvvLlvSMycORcAV5SeSsNs9FqC8hR7Yhfetae5SnYYtgOUi+S aUIJizg3dCKPVvXRbmGGsqWiIKf+BQTXCNTkC6A5k/ZkbSYecICmM9LQhPImHqPC 21F9dQiPQJH1pWnEUfzLbyHUBQV38qL7I7xZT6wC9Bb1++cbGNOqPLqizw70xOOY Hfd1flKNqbOdZTNSYUL4oa+7dfQH6w9lv0fXX6KvwzkBT7dhM5q03Fhsnr8PM/1N Xqw1A0Vt4m5QGECws6NUsZ06B9dWc7zkEgks3JIQuVK2OOMbvrOZaeKA7+4uy7W4 8kFqjC6rJpDv7635z/A8i4PvYlklYd1HYGWW5A/gURUjp7bdWeDU4dpW2XzmWc72 09LJgblBnAuGUmb/jz9a/5XOlsJ//MS1ocKTUQh9RH/ddD1q6id7KdEK4/XrHOwj 0CkMiTny1Zcmdg7hcgc09hILkJRWY6NB9sXJzfzsqeGM4dJjlHqByt1WBe7tO9Gy aZONrjE1RyC7f5CUpSEzrro3vxEFB8sscOt+oMcRJ0no3pUL9wk= =4Jx3 -----END PGP SIGNATURE-----