Advisories MDKSA-2007:016: Updated fetchmail packages fix vulnerability

[paul]

Fetchmail before 6.3.6-rc4 does not properly enforce TLS and may

transmit cleartext passwords over unsecured links if certain

circumstances occur, which allows remote attackers to obtain sensitive

information via man-in-the-middle (MITM) attacks.

 

The updated packages have been patched to correct this problem.