Описание
Security update for evolution
This update for evolution fixes the following issue:
Security issue fixed:
- CVE-2018-15587: Fixed OpenPGP signatures spoofing via specially crafted email that contains a valid signature (bsc#1125230).
Список пакетов
SUSE Linux Enterprise Software Development Kit 12 SP5
evolution-devel-3.22.6-19.9.1
SUSE Linux Enterprise Workstation Extension 12 SP5
evolution-3.22.6-19.9.1
evolution-lang-3.22.6-19.9.1
Ссылки
- Link for SUSE-SU-2019:1391-2
- E-Mail link for SUSE-SU-2019:1391-2
- SUSE Security Ratings
- SUSE Bug 1125230
- SUSE CVE CVE-2018-15587 page
Описание
GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as an attachment.
Затронутые продукты
SUSE Linux Enterprise Software Development Kit 12 SP5:evolution-devel-3.22.6-19.9.1
SUSE Linux Enterprise Workstation Extension 12 SP5:evolution-3.22.6-19.9.1
SUSE Linux Enterprise Workstation Extension 12 SP5:evolution-lang-3.22.6-19.9.1
Ссылки
- CVE-2018-15587
- SUSE Bug 1125230