On February 1, 2020 at 6:29PM +0900, tats (at debian.org) wrote: > Control: clone -1 -2 > Control: reassign -2 mew-beta > Control: retitle -2 mew-beta: does not validate server certificate subject > Control: found -2 7.0.50~6.7+0.20161225-1 > Control: found -2 7.0.50~6.8+0.20190228-1 > Control: fixed -2 7.0.50~6.8+0.20200130-1 > > The mew-beta package is also affected.
Patch updated for buster, mew-beta 7.0.50~6.8+0.20190228-1. Thanks, -- Tatsuya Kinoshita
Subject: Enable checkHost for stunnel Origin: upstream, https://github.com/kazu-yamamoto/Mew/commit/8de0a1398f10d0e8da29ce91ec22af17430c0004 Bug: https://github.com/kazu-yamamoto/Mew/pull/133 --- a/mew-ssl.el +++ b/mew-ssl.el @@ -109,6 +109,8 @@ insert no extra text.") (if mew-ssl-unixlike (insert "pid=\n")) (insert (format "verify=%d\n" (mew-ssl-verify-level case))) + (if (> (mew-ssl-verify-level case) 0) + (insert (format "checkHost=%s\n" server))) (if mew-ssl-unixlike (insert "foreground=yes\n")) (insert "debug=debug\n")
pgpmkVoN7cOnX.pgp
Description: PGP signature
