Multiple vulnerabilities have been found in claws-mail, particularly in the default SSL implementation.
|Package||mail-client/claws-mail on all architectures|
|Affected versions||< 3.13.2|
|Unaffected versions||>= 3.13.2|
Claws Mail is a GTK based e-mail client.
Multiple vulnerabilities have been discovered in claws-mail. Please review the CVE identifiers referenced below for details.
An attacker could possibly intercept communications due to the default implementation of SSL 3.0.
There is no known workaround at this time.
All claws-mail users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=mail-client/claws-mail-3.13.2"