Описание
ELSA-2020-1080: evolution security and bug fix update (MODERATE)
atk [2.28.1-2]
- Remove patch to fix invalid unref at atk_gobject_accessible_object_gone_cb()
- Resolves: #1753123
evolution [3.28.5-8]
- Update patch for RH bug #1686408 (CVE-2018-15587: Reposition signature bar)
[3.28.5-7]
- Add patch for RH bug #1686408 (CVE-2018-15587: Reposition signature bar)
[3.28.5-6]
- Add patch for RH bug #1753122 (GalA11yETableItem: Incorrect implementation of AtkObjectClass::ref_child())
evolution-data-server [3.28.5-4]
- Add patch related to evolution-ews CVE-2019-3890 (RH bug #1696762)
evolution-ews [3.28.5-5]
- Remove patch for RH bug #1764669 (Send meeting change notifications only if being the organizer)
[3.28.5-4]
- Add patch for RH bug #1392567 (Sync CategoryList with mail Labels)
- Add patch for RH bug #1764669 (Send meeting change notifications only if being the organizer)
[3.28.5-3]
- Add patch for RH bug #1696760 (CVE-2019-3890 - SSL Certificates are not validated)
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
atk
2.28.1-2.el7
atk-devel
2.28.1-2.el7
evolution
3.28.5-8.el7
evolution-bogofilter
3.28.5-8.el7
evolution-data-server
3.28.5-4.el7
evolution-data-server-devel
3.28.5-4.el7
evolution-data-server-doc
3.28.5-4.el7
evolution-data-server-langpacks
3.28.5-4.el7
evolution-data-server-perl
3.28.5-4.el7
evolution-data-server-tests
3.28.5-4.el7
evolution-devel
3.28.5-8.el7
evolution-devel-docs
3.28.5-8.el7
evolution-ews
3.28.5-5.el7
evolution-ews-langpacks
3.28.5-5.el7
evolution-help
3.28.5-8.el7
evolution-langpacks
3.28.5-8.el7
evolution-pst
3.28.5-8.el7
evolution-spamassassin
3.28.5-8.el7
Oracle Linux x86_64
atk
2.28.1-2.el7
atk-devel
2.28.1-2.el7
evolution
3.28.5-8.el7
evolution-bogofilter
3.28.5-8.el7
evolution-data-server
3.28.5-4.el7
evolution-data-server-devel
3.28.5-4.el7
evolution-data-server-doc
3.28.5-4.el7
evolution-data-server-langpacks
3.28.5-4.el7
evolution-data-server-perl
3.28.5-4.el7
evolution-data-server-tests
3.28.5-4.el7
evolution-devel
3.28.5-8.el7
evolution-devel-docs
3.28.5-8.el7
evolution-ews
3.28.5-5.el7
evolution-ews-langpacks
3.28.5-5.el7
evolution-help
3.28.5-8.el7
evolution-langpacks
3.28.5-8.el7
evolution-pst
3.28.5-8.el7
evolution-spamassassin
3.28.5-8.el7
Связанные CVE
Связанные уязвимости
It was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. An attacker could abuse this flaw to get confidential information by tricking the user into connecting to a fake server without the user noticing the difference.
It was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. An attacker could abuse this flaw to get confidential information by tricking the user into connecting to a fake server without the user noticing the difference.
It was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. An attacker could abuse this flaw to get confidential information by tricking the user into connecting to a fake server without the user noticing the difference.
It was discovered evolution-ews before 3.31.3 does not check the valid ...
GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as an attachment.