VYPR

rpm package

opensuse/evolution&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/evolution&distro=openSUSE%20Tumbleweed

Vulnerabilities (3)

  • CVE-2018-15587Feb 11, 2019
    affected < 3.40.4-1.4fixed 3.40.4-1.4

    GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as an attachment.

  • CVE-2008-1109Jun 4, 2008
    affected < 3.40.4-1.4fixed 3.40.4-1.4

    Heap-based buffer overflow in Evolution 2.22.1 allows user-assisted remote attackers to execute arbitrary code via a long DESCRIPTION property in an iCalendar attachment, which is not properly handled during a reply in the calendar view (aka the Calendars window).

  • CVE-2008-1108Jun 4, 2008
    affected < 3.40.4-1.4fixed 3.40.4-1.4

    Buffer overflow in Evolution 2.22.1, when the ITip Formatter plugin is disabled, allows remote attackers to execute arbitrary code via a long timezone string in an iCalendar attachment.