Your submission was sent successfully! Close

CVE-2020-14154

Published: 15 June 2020

Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate.

Priority

Low

CVSS 3 base score: 4.8

Status

Package Release Status
mutt
Launchpad, Ubuntu, Debian
bionic
Released (1.9.4-3ubuntu0.2)
eoan
Released (1.10.1-2.1ubuntu0.1)
focal
Released (1.13.2-1ubuntu0.1)
precise
Released (1.5.21-5ubuntu2.4)
trusty Does not exist

upstream Needs triage

xenial
Released (1.5.24-1ubuntu0.3)