DEBIAN-CVE-2020-15954

See a problem?
Please try reporting it to the source first.
Source
https://security-tracker.debian.org/tracker/CVE-2020-15954
Import Source
https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json
JSON Data
https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2020-15954
Upstream
Downstream
Published
2020-07-27T07:15:11.113Z
Modified
2026-03-11T07:31:36.140942Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

KDE KMail 19.12.3 (aka 5.13.3) engages in unencrypted POP3 communication during times when the UI indicates that encryption is in use.

References

Affected packages

Debian:11
kdepim-runtime

Package

Name
kdepim-runtime
Purl
pkg:deb/debian/kdepim-runtime?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4:20.04.1-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"
kmail-account-wizard

Package

Name
kmail-account-wizard
Purl
pkg:deb/debian/kmail-account-wizard?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4:20.04.1-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"
ksmtp

Package

Name
ksmtp
Purl
pkg:deb/debian/ksmtp?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

20.*
20.08.3-1
21.*
21.04.0-1
21.04.1-1
21.04.3-1
21.08.0-1
21.08.1-1
21.12.3-1
21.12.3-2
22.*
22.04.1-1
22.04.2-1
22.04.2-2
22.04.3-1
22.08.0-1
22.08.0-2
22.08.2-1
22.08.3-1
22.12.0-1
22.12.0-2
22.12.2-1
22.12.3-1
24.*
24.05.2-2
24.08.0-1
24.08.2-1
24.12.0-1
24.12.0-2
24.12.2-1
24.12.3-1
25.*
25.08.3-1
25.08.3-2
25.12.1-1
25.12.1-2
25.12.3-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"
Debian:12
kdepim-runtime

Package

Name
kdepim-runtime
Purl
pkg:deb/debian/kdepim-runtime?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4:20.04.1-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"
kmail-account-wizard

Package

Name
kmail-account-wizard
Purl
pkg:deb/debian/kmail-account-wizard?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4:20.04.1-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"
ksmtp

Package

Name
ksmtp
Purl
pkg:deb/debian/ksmtp?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
21.12.3-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"
Debian:13
kdepim-runtime

Package

Name
kdepim-runtime
Purl
pkg:deb/debian/kdepim-runtime?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4:20.04.1-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"
kmail-account-wizard

Package

Name
kmail-account-wizard
Purl
pkg:deb/debian/kmail-account-wizard?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4:20.04.1-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"
ksmtp

Package

Name
ksmtp
Purl
pkg:deb/debian/ksmtp?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
21.12.3-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"
Debian:14
kdepim-runtime

Package

Name
kdepim-runtime
Purl
pkg:deb/debian/kdepim-runtime?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4:20.04.1-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"
kmail-account-wizard

Package

Name
kmail-account-wizard
Purl
pkg:deb/debian/kmail-account-wizard?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4:20.04.1-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"
ksmtp

Package

Name
ksmtp
Purl
pkg:deb/debian/ksmtp?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
21.12.3-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source 
"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2020-15954.json"