Mandriva Linux Security Advisory - Fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks.
9ae09d57d9ff020d864b9569e5e17e2aea52648d89cd2e3b9c47ad4148760743