mpop 1.4.3 is released
This version fixes a security problem that affects version 1.4.2 (older versions are not affected):
when the new default value
tls_trust_file is used, the result
of certificate verification was not properly checked.
Update 2019-02-14: The same problem in msmtp has been assigned CVE-2019-8337. This is the patch that fixes it (included in version 1.4.3).