Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2020-4649

Опубликовано: 10 нояб. 2020
Источник: oracle-oval
Платформа: Oracle Linux 8

Описание

ELSA-2020-4649: evolution security and bug fix update (LOW)

bogofilter [1.2.5-2]

  • Bump version to have OSCI/gating tests rerun with updated tests

[1.2.5-1]

  • Resolves: #1836279 (Update to 1.2.5)

evolution [3.28.5-14]

  • Related: #1817143 (Add a small patch to behave better with WebKitGTK 2.28)

[3.28.5-13]

  • Resolves: #1836165 (Cannot type the date of a meeting)

evolution-data-server [3.28.5-14]

  • Resolves: #1859141 (CVE-2020-14928: Response Injection via STARTTLS in SMTP and POP3)

evolution-mapi [3.28.3-3]

  • Rebuild for samba 4.12 rebase

openchange [2.3-26.0.1]

  • Use ldconfig_scriptlets

[2.3-26]

  • Add patch to build against samba 4.12

[2.3-25]

  • Add patch to build against samba 4.11.2

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

bogofilter

1.2.5-2.el8

evolution

3.28.5-14.el8

evolution-bogofilter

3.28.5-14.el8

evolution-data-server

3.28.5-14.el8

evolution-data-server-devel

3.28.5-14.el8

evolution-data-server-doc

3.28.5-14.el8

evolution-data-server-langpacks

3.28.5-14.el8

evolution-data-server-perl

3.28.5-14.el8

evolution-data-server-tests

3.28.5-14.el8

evolution-devel

3.28.5-14.el8

evolution-help

3.28.5-14.el8

evolution-langpacks

3.28.5-14.el8

evolution-mapi

3.28.3-3.el8

evolution-mapi-langpacks

3.28.3-3.el8

evolution-pst

3.28.5-14.el8

evolution-spamassassin

3.28.5-14.el8

openchange

2.3-26.0.1.el8

Oracle Linux x86_64

bogofilter

1.2.5-2.el8

evolution

3.28.5-14.el8

evolution-bogofilter

3.28.5-14.el8

evolution-data-server

3.28.5-14.el8

evolution-data-server-devel

3.28.5-14.el8

evolution-data-server-doc

3.28.5-14.el8

evolution-data-server-langpacks

3.28.5-14.el8

evolution-data-server-perl

3.28.5-14.el8

evolution-data-server-tests

3.28.5-14.el8

evolution-devel

3.28.5-14.el8

evolution-help

3.28.5-14.el8

evolution-langpacks

3.28.5-14.el8

evolution-mapi

3.28.3-3.el8

evolution-mapi-langpacks

3.28.3-3.el8

evolution-pst

3.28.5-14.el8

evolution-spamassassin

3.28.5-14.el8

openchange

2.3-26.0.1.el8

Связанные CVE

CVE-2020-14928

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2020-14928

CVSS3: 5.9
ubuntu
почти 5 лет назад

evolution-data-server (eds) through 3.36.3 has a STARTTLS buffering issue that affects SMTP and POP3. When a server sends a "begin TLS" response, eds reads additional data and evaluates it in a TLS context, aka "response injection."

redhat логотип

CVE-2020-14928

CVSS3: 5.3
redhat
почти 5 лет назад

evolution-data-server (eds) through 3.36.3 has a STARTTLS buffering issue that affects SMTP and POP3. When a server sends a "begin TLS" response, eds reads additional data and evaluates it in a TLS context, aka "response injection."

nvd логотип

CVE-2020-14928

CVSS3: 5.9
nvd
почти 5 лет назад

evolution-data-server (eds) through 3.36.3 has a STARTTLS buffering issue that affects SMTP and POP3. When a server sends a "begin TLS" response, eds reads additional data and evaluates it in a TLS context, aka "response injection."

debian логотип

CVE-2020-14928

CVSS3: 5.9
debian
почти 5 лет назад

evolution-data-server (eds) through 3.36.3 has a STARTTLS buffering is ...

rocky логотип

RLSA-2020:4649

rocky
больше 4 лет назад

Low: evolution security and bug fix update