AVG-2326 log
| Package | fetchmail |
| Status | Fixed |
| Severity | Medium |
| Type | information disclosure |
| Affected | 6.4.21-1 |
| Fixed | 6.4.22-1 |
| Current | 6.4.39-1 [extra] |
| Ticket | None |
| Created | Fri Aug 27 10:13:38 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-39272 | Medium | Yes | Information disclosure | Fetchmail before 6.4.22 fails to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH. |