CVE Vulnerabilities

CVE-2014-5444

Published: Sep 30, 2014 | Modified: Oct 02, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

Geary before 0.6.3 does not present the user with a warning when a TLS certificate error is detected, which makes it easier for remote attackers to conduct man-in-the-middle attacks via a crafted certificate.

Affected Software

Name Vendor Start Version End Version
Geary Yorba * 0.5.0 (including)
Geary Ubuntu trusty *
Geary Ubuntu upstream *

References