So, to eventually close this bug. It is identified in 2.0.3 by upstream
maintainers and a patch[1] has been issued to fix the bug.
What I could see for now : bug is triggered when you open any email
account preferences. All accounts auth type is then reset to plaintext
authentification, although
Package: evolution
Version: 2.0.3-1.1
Severity: grave
Justification: user security hole
Since yesterday's sid update, my Evolution only authenticate using
plaintext login/password, whether you choose NTLM, DIGEST-MD5 or
CRAM-MD5, introducing a security issue on non SSL accounts and denial of
Since yesterday's sid update, my Evolution only authenticate using
plaintext login/password, whether you choose NTLM, DIGEST-MD5 or
CRAM-MD5, introducing a security issue on non SSL accounts and denial
of
access on servers refusing plaintext authentications.
evolution has not changed for one
3 matches
Mail list logo
