Candidate: CVE-2014-5444
PublicDate: 2014-09-30 14:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5444
 https://bugzilla.gnome.org/show_bug.cgi?id=713247
Description:
 Geary before 0.6.3 does not present the user with a warning when a TLS
 certificate error is detected, which makes it easier for remote attackers
 to conduct man-in-the-middle attacks via a crafted certificate.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_geary:
 upstream: https://git.gnome.org/browse/geary/commit/?h=geary-0.6&id=55f06a7bdcedb7efde6a516bde626ea28793ca7e
upstream_geary: released (0.6.3-1)
lucid_geary: DNE
precise_geary: DNE
precise/esm_geary: DNE
trusty_geary: ignored (reached end-of-life)
trusty/esm_geary: DNE (trusty was needed)
utopic_geary: not-affected (0.6.3-1ubuntu1)
vivid_geary: not-affected (0.6.3-1ubuntu1)
vivid/stable-phone-overlay_geary: DNE
vivid/ubuntu-core_geary: DNE
wily_geary: not-affected (0.6.3-1ubuntu1)
xenial_geary: not-affected (0.6.3-1ubuntu1)
yakkety_geary: not-affected (0.6.3-1ubuntu1)
zesty_geary: not-affected (0.6.3-1ubuntu1)
artful_geary: not-affected (0.6.3-1ubuntu1)
bionic_geary: not-affected (0.6.3-1ubuntu1)
cosmic_geary: not-affected (0.6.3-1ubuntu1)
disco_geary: not-affected (0.6.3-1ubuntu1)
devel_geary: not-affected (0.6.3-1ubuntu1)