CVE-2014-5444

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2014-5444

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2014-5444.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2014-5444

Downstream

DEBIAN-CVE-2014-5444

Related

MGASA-2014-0500

Published

2014-09-30T14:55:09Z

Modified

2025-08-09T19:01:28Z

Summary

[none]

Details

Geary before 0.6.3 does not present the user with a warning when a TLS certificate error is detected, which makes it easier for remote attackers to conduct man-in-the-middle attacks via a crafted certificate.

References

https://git.gnome.org/browse/geary/commit/?h=geary-0.6&id=55f06a7bdcedb7efde6a516bde626ea28793ca7e
https://bugzilla.gnome.org/show_bug.cgi?id=713247
http://lists.opensuse.org/opensuse-updates/2014-09/msg00035.html

CVE-2014-5444

Affected packages