Описание
ELSA-2021-1752: evolution security, bug fix, and enhancement update (LOW)
evolution [3.28.5-16]
- Resolves: #1902630 (Crash on file drag into mail composer with WebKitGTK 2.30)
[3.28.5-15]
- Resolves: #1883619 (ECalendarItem: Settings loaded only when being shown)
evolution-data-server [3.28.5-15]
- Resolves: #1862403 (CVE-2020-16117: Crash on malformed server response with minimal capabilities)
evolution-ews [3.28.5-10]
- Resolves: #1886026 (Simplify OAuth2 for outlook.office365.com server)
- Resolves: #1885229 (Allow change of the Microsoft 365 OAuth2 endpoints)
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
evolution
3.28.5-16.el8
evolution-bogofilter
3.28.5-16.el8
evolution-data-server
3.28.5-15.el8
evolution-data-server-devel
3.28.5-15.el8
evolution-data-server-doc
3.28.5-15.el8
evolution-data-server-langpacks
3.28.5-15.el8
evolution-data-server-perl
3.28.5-15.el8
evolution-data-server-tests
3.28.5-15.el8
evolution-devel
3.28.5-16.el8
evolution-ews
3.28.5-10.el8
evolution-ews-langpacks
3.28.5-10.el8
evolution-help
3.28.5-16.el8
evolution-langpacks
3.28.5-16.el8
evolution-pst
3.28.5-16.el8
evolution-spamassassin
3.28.5-16.el8
Oracle Linux x86_64
evolution
3.28.5-16.el8
evolution-bogofilter
3.28.5-16.el8
evolution-data-server
3.28.5-15.el8
evolution-data-server-devel
3.28.5-15.el8
evolution-data-server-doc
3.28.5-15.el8
evolution-data-server-langpacks
3.28.5-15.el8
evolution-data-server-perl
3.28.5-15.el8
evolution-data-server-tests
3.28.5-15.el8
evolution-devel
3.28.5-16.el8
evolution-ews
3.28.5-10.el8
evolution-ews-langpacks
3.28.5-10.el8
evolution-help
3.28.5-16.el8
evolution-langpacks
3.28.5-16.el8
evolution-pst
3.28.5-16.el8
evolution-spamassassin
3.28.5-16.el8
Связанные CVE
Связанные уязвимости
In GNOME evolution-data-server before 3.35.91, a malicious server can crash the mail client with a NULL pointer dereference by sending an invalid (e.g., minimal) CAPABILITY line on a connection attempt. This is related to imapx_free_capability and imapx_connect_to_server.
In GNOME evolution-data-server before 3.35.91, a malicious server can crash the mail client with a NULL pointer dereference by sending an invalid (e.g., minimal) CAPABILITY line on a connection attempt. This is related to imapx_free_capability and imapx_connect_to_server.
In GNOME evolution-data-server before 3.35.91, a malicious server can crash the mail client with a NULL pointer dereference by sending an invalid (e.g., minimal) CAPABILITY line on a connection attempt. This is related to imapx_free_capability and imapx_connect_to_server.
In GNOME evolution-data-server before 3.35.91, a malicious server can ...
