Ubuntu
evolution-data-server package

SSL subject to POODLE vulnerability

Bug #1382517 reported by DavidS on 2014-10-17

This bug report is a duplicate of: Bug #1382133: Issue with servers with SSLv3 disabled due to Poodle . Edit Remove

256

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	evolution-data-server (Ubuntu)	New	Undecided	Unassigned

Bug Description

It seems that Evolution 2.3.2 uses SSLv3 and is therefore subject to the recently announced POODLE vulnerability. (As a result I can no longer access my IMAP server at fastmail.fm, because they have turned off the SSLv3 fallback).

Evolution 2.3.2 is the latest version from the Ubuntu 12.04 repositories. I use Ubuntu 12.04 on 4 computers, so all are affected by this.

DavidS (david-aeolia) on 2014-10-17

information type:

Private Security → Public Security

Iain Lane (laney) on 2014-10-17

affects:

evolution (Ubuntu) → evolution-data-server (Ubuntu)

Report a bug

This report contains Public Security information

Everyone can see this security related information.

Duplicate of bug #1382133 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntuevolution-data-server package

SSL subject to POODLE vulnerability

Bug Description

Other bug subscribers

Remote bug watches

Ubuntu
evolution-data-server package