Описание
Security update for evolution
This update for evolution fixes the following issues:
Security issue fixed:
- CVE-2018-15587: Fixed an issue with spoofed pgp signatures by using specially crafted emails (bsc#1125230).
Список пакетов
SUSE Linux Enterprise Workstation Extension 15
evolution-3.26.6-4.3.1
evolution-devel-3.26.6-4.3.1
evolution-lang-3.26.6-4.3.1
evolution-plugin-bogofilter-3.26.6-4.3.1
evolution-plugin-pst-import-3.26.6-4.3.1
evolution-plugin-spamassassin-3.26.6-4.3.1
Ссылки
- Link for SUSE-SU-2019:1266-1
- E-Mail link for SUSE-SU-2019:1266-1
- SUSE Security Ratings
- SUSE Bug 1125230
- SUSE CVE CVE-2018-15587 page
Описание
GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as an attachment.
Затронутые продукты
SUSE Linux Enterprise Workstation Extension 15:evolution-3.26.6-4.3.1
SUSE Linux Enterprise Workstation Extension 15:evolution-devel-3.26.6-4.3.1
SUSE Linux Enterprise Workstation Extension 15:evolution-lang-3.26.6-4.3.1
SUSE Linux Enterprise Workstation Extension 15:evolution-plugin-bogofilter-3.26.6-4.3.1
Ссылки
- CVE-2018-15587
- SUSE Bug 1125230