Lucene search
GoogleOSV:CVE-2019-10734HistoryApr 07, 2019 - 3:29 p.m.
CVE-2019-10734
2019-04-0715:29:00
Google
osv.dev
2
In KDE Trojita 0.7, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended receiver. If the receiver replies to this (benign looking) email, they unknowingly leak the plaintext of the encrypted message part(s) back to the attacker.
References
Related
prion
prion
Design/Logic Flaw
2019-04-07 15:29:00
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0214)
2022-06-06 00:00:00
Fedora: Security Advisory for trojita (FEDORA-2022-7f67e9e695)
2022-02-04 00:00:00
Fedora: Security Advisory for trojita (FEDORA-2022-46fefaadfd)
2022-02-04 00:00:00
cve
cve
CVE-2019-10734
2019-04-07 15:29:00
mageia
mageia
Updated trojita packages fix security vulnerability
2022-06-03 20:15:11
cvelist
cvelist
CVE-2019-10734
2019-04-07 14:34:33
nvd
nvd
CVE-2019-10734
2019-04-07 15:29:00
ubuntucve
ubuntucve
CVE-2019-10734
2019-04-07 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: trojita-0.7.0.1-0.13.20220117git266c757.fc34
2022-02-04 01:24:11
[SECURITY] Fedora 35 Update: trojita-0.7.0.1-0.13.20220117git266c757.fc35
2022-02-04 01:25:02