[opensuse-kde] KMAIL allows man in the middle attack - do we get a patch or do we have to discontiue the use of kmail until 4.13.3?.
Quite catastrophic AFAIU:
Golem: http://www.golem.de/news/kde-fehler-in-kmail-erlaubt-man-in-the-middle-angri...
http://www.kde.org/info/security/advisory-20140618-1.txt
That is to all extend the worst error that can be with POP. Do I have to discontinue the use of KMAIL or will the patch be on its way asap (That is we do not have to wait for KDE 13.3)? This voids of course all passwords of all Pop accounts and requires a complete setup (AGAIN after heart-bleed and so on and so forth. Password changing is getting a hobby). Not amused.
Thanks.
--- Alle Postfächer an einem Ort. Jetzt wechseln und E-Mail-Adresse mitnehmen! http://email.freenet.de/basic/Informationen
On Thursday 19 June 2014 12:08:20 stakanov@freenet.de wrote:
http://www.kde.org/info/security/advisory-20140618-1.txt
That is to all extend the worst error that can be with POP. Do I have to discontinue the use of KMAIL or will the patch be on its way asap (That is
Security Issues will always be resolved as soon as possible. At this moment the patch has been added to the KDE:Current and KDE:Distro:Factory repositories and should be published soon.
We will make sure that also a maitenance update will be submitted for those users that are using the KDE that was delivered standard with openSUSE 13.1 (KDE 4.11.5).
Regards
Raymond
-
Raymond Wooninck -
stakanov@freenet.de