[SECURITY] mutt
Yaakov Selkowitz
yselkowitz@cygwin.com
Thu Jan 1 03:52:00 GMT 2015
Marco,
Please add the following patches to mutt:
* For CVE-2014-9116 (see
https://bugzilla.redhat.com/show_bug.cgi?id=1168463 for details):
http://pkgs.fedoraproject.org/cgit/mutt.git/plain/mutt-1.5.23-sendlib.patch
* All programs should use the system ca-certificates instead of bundling
their own (which are usually old, or become so quickly):
http://pkgs.fedoraproject.org/cgit/mutt.git/plain/mutt-1.5.21-cabundle.patch
While you are at it:
* Any reason not to configure with --enable-smtp?
* I just added gpgme to the distro. This can be used in mutt by
installing libgpgme-devel and adding --enable-gpgme to the configure flags.
* Kerberos and SASL support can also be enabled by installing
libkrb5-devel and libsasl2-devel, and adding --enable-gss --enable-sasl
to the configure flags.
--
Yaakov
More information about the Cygwin-apps
mailing list