CVE-2019-3890

Priority
Description
It was discovered evolution-ews before 3.31.3 does not check the validity
of SSL certificates. An attacker could abuse this flaw to get confidential
information by tricking the user into connecting to a fake server without
the user noticing the difference.
Notes
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was needs-triage)
Ubuntu 16.04 LTS (Xenial Xerus):needs-triage
Ubuntu 18.04 LTS (Bionic Beaver):needs-triage
Ubuntu 19.04 (Disco Dingo):needs-triage
Ubuntu 19.10 (Eoan):needs-triage
More Information

Updated: 2019-10-18 02:47:23 UTC (commit cccfc4426d8c1fbf582a89d981fe7fc812124543)