Lucene search
OracleLinuxELSA-2020-1080HistoryApr 06, 2020 - 12:00 a.m.
evolution security and bug fix update
2020-04-0600:00:00
linux.oracle.com
10
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
atk
[2.28.1-2]
- Remove patch to fix invalid unref at atk_gobject_accessible_object_gone_cb()
- Resolves: #1753123
evolution
[3.28.5-8] - Update patch for RH bug #1686408 (CVE-2018-15587: Reposition signature bar)
[3.28.5-7] - Add patch for RH bug #1686408 (CVE-2018-15587: Reposition signature bar)
[3.28.5-6] - Add patch for RH bug #1753122 (GalA11yETableItem: Incorrect implementation of AtkObjectClass::ref_child())
evolution-data-server
[3.28.5-4] - Add patch related to evolution-ews CVE-2019-3890 (RH bug #1696762)
evolution-ews
[3.28.5-5] - Remove patch for RH bug #1764669 (Send meeting change notifications only if being the organizer)
[3.28.5-4] - Add patch for RH bug #1392567 (Sync CategoryList with mail Labels)
- Add patch for RH bug #1764669 (Send meeting change notifications only if being the organizer)
[3.28.5-3] - Add patch for RH bug #1696760 (CVE-2019-3890 - SSL Certificates are not validated)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | atk | < 2.28.1-2.el7 | atk-2.28.1-2.el7.src.rpm |
| oracle linux | 7 | src | evolution | < 3.28.5-8.el7 | evolution-3.28.5-8.el7.src.rpm |
| oracle linux | 7 | src | evolution-data-server | < 3.28.5-4.el7 | evolution-data-server-3.28.5-4.el7.src.rpm |
| oracle linux | 7 | src | evolution-ews | < 3.28.5-5.el7 | evolution-ews-3.28.5-5.el7.src.rpm |
| oracle linux | 7 | aarch64 | atk | < 2.28.1-2.el7 | atk-2.28.1-2.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | atk-devel | < 2.28.1-2.el7 | atk-devel-2.28.1-2.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | evolution | < 3.28.5-8.el7 | evolution-3.28.5-8.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | evolution-bogofilter | < 3.28.5-8.el7 | evolution-bogofilter-3.28.5-8.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | evolution-data-server | < 3.28.5-4.el7 | evolution-data-server-3.28.5-4.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | evolution-data-server-devel | < 3.28.5-4.el7 | evolution-data-server-devel-3.28.5-4.el7.aarch64.rpm |
Related
nessus
nessus
Oracle Linux 7 : evolution (ELSA-2020-1080)
2023-09-07 00:00:00
Scientific Linux Security Update : evolution on SL7.x x86_64 (20200407)
2020-04-21 00:00:00
centos
centos
atk, evolution security update
2020-04-08 17:42:28
redhat
redhat
(RHSA-2020:1080) Moderate: evolution security and bug fix update
2020-03-31 09:16:03
(RHSA-2020:1600) Moderate: evolution security and bug fix update
2020-04-28 08:55:27
(RHSA-2019:3699) Moderate: evolution security and bug fix update
2019-11-05 20:52:06
almalinux
almalinux
Moderate: evolution security and bug fix update
2020-04-28 08:55:27
osv
osv
evolution - security update
2019-04-26 00:00:00
CVE-2019-3890
2019-08-01 14:15:13
CVE-2018-15587
2019-02-11 17:29:00
debian
debian
[SECURITY] [DSA 4457-1] evolution security update
2019-06-07 05:24:03
[SECURITY] [DLA 1766-1] evolution security update
2019-04-26 21:10:49
[SECURITY] [DSA 4457-1] evolution security update
2019-06-07 05:24:03
openvas
openvas
openSUSE: Security Advisory for evolution (openSUSE-SU-2019:1453-1)
2019-05-28 00:00:00
Debian: Security Advisory (DLA-1766-1)
2019-04-27 00:00:00
Huawei EulerOS: Security Advisory for evolution (EulerOS-SA-2021-1779)
2021-05-03 00:00:00
archlinux
archlinux
[ASA-201904-1] evolution: content spoofing
2019-04-02 00:00:00
cve
cve
CVE-2018-15587
2019-02-11 17:29:00
CVE-2019-3890
2019-08-01 14:15:00
fedora
fedora
[SECURITY] Fedora 28 Update: evolution-3.28.5-3.fc28
2019-03-08 21:40:21
[SECURITY] Fedora 29 Update: evolution-data-server-3.30.5-2.fc29
2019-04-06 19:44:49
[SECURITY] Fedora 29 Update: evolution-ews-3.30.5-2.fc29
2019-04-06 19:44:49
veracode
veracode
Authorization Bypass
2019-11-06 00:21:11
Signature Spoofing
2020-04-01 00:38:31
amazon
amazon
Medium: evolution-data-server, evolution-ews
2020-08-18 19:31:00
Medium: evolution
2020-08-18 19:48:00
ubuntucve
ubuntucve
CVE-2019-3890
2019-08-01 00:00:00
CVE-2018-15587
2019-02-11 00:00:00
oraclelinux
oraclelinux
evolution security and bug fix update
2020-05-05 00:00:00
evolution security and bug fix update
2019-11-14 00:00:00
suse
suse
Security update for evolution (moderate)
2019-06-07 00:00:00
Security update for evolution (moderate)
2019-05-27 00:00:00
Security update for evolution (moderate)
2019-05-22 00:00:00
prion
prion
Information disclosure
2019-08-01 14:15:00
Design/Logic Flaw
2019-02-11 17:29:00
ubuntu
ubuntu
Evolution Data Server vulnerability
2019-05-30 00:00:00
redhatcve
redhatcve
CVE-2018-15587
2019-02-15 13:49:28
CVE-2019-3890
2020-04-02 13:53:41
debiancve
debiancve
CVE-2018-15587
2019-02-11 17:29:00
CVE-2019-3890
2019-08-01 14:15:00
thn
thn
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
Related for ELSA-2020-1080