Lucene search
GoogleOSV:DSA-1325-1HistoryJun 29, 2007 - 12:00 a.m.
evolution
2007-06-2900:00:00
Google
osv.dev
10
0.205 Low
EPSS
Percentile
96.4%
Several remote vulnerabilities have been discovered in Evolution, a
groupware suite with mail client and organizer. The Common Vulnerabilities
and Exposures project identifies the following problems:
- CVE-2007-1002
Ulf Härnhammar discovered that a format string vulnerability in
the handling of shared calendars may allow the execution of arbitrary
code. - CVE-2007-3257
It was discovered that the IMAP code in the Evolution Data Server
performs insufficient sanitising of a value later used an array index,
which can lead to the execution of arbitrary code.
For the oldstable distribution (sarge) these problems have been fixed in
version 2.0.4-2sarge2. Packages for hppa, mips and powerpc are not yet
available. They will be provided later.
For the stable distribution (etch) these problems have been fixed
in version 2.6.3-6etch1. Packages for mips are not yet available. They
will be provided later.
For the unstable distribution (sid) these problems will be fixed soon.
We recommend that you upgrade your evolution packages.
References
Related
nessus
nessus
Debian DSA-1325-1 : evolution - several vulnerabilities
2007-07-10 00:00:00
Oracle Linux 3 / 4 : evolution (ELSA-2007-0509)
2013-07-12 00:00:00
Mandrake Linux Security Advisory : evolution (MDKSA-2007:136)
2007-06-27 00:00:00
debian
debian
openvas
openvas
Debian: Security Advisory (DSA-1325-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 1325-1 (evolution)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200711-04 (evolution-data-server)
2008-09-24 00:00:00
ubuntucve
ubuntucve
CVE-2007-3257
2007-06-19 00:00:00
CVE-2007-1002
2007-03-21 00:00:00
securityvulns
securityvulns
Evolution Data Server integer overflow
2007-06-22 00:00:00
Gnome Evolution calendar format string vulnerability
2007-03-22 00:00:00
prion
prion
Code injection
2007-06-19 16:30:00
Format string
2007-03-21 22:19:00
centos
centos
evolution security update
2007-06-25 14:45:34
evolution security update
2007-06-27 11:05:43
debiancve
debiancve
CVE-2007-3257
2007-06-19 16:30:00
CVE-2007-1002
2007-03-21 22:19:00
cvelist
cvelist
CVE-2007-3257
2007-06-19 16:00:00
CVE-2007-1002
2007-03-21 22:00:00
ubuntu
ubuntu
evolution-data-server vulnerability
2007-06-21 00:00:00
Evolution vulnerability
2007-03-26 00:00:00
oraclelinux
oraclelinux
Important: evolution-data-server security update
2007-06-26 00:00:00
Important: evolution security update
2007-06-25 00:00:00
suse
suse
remote code execution in evolution,evolution-data-server
2007-07-05 17:43:27
gentoo
gentoo
Evolution: User-assisted remote execution of arbitrary code
2007-11-06 00:00:00
Evolution: User-assisted remote execution of arbitrary code
2007-07-02 00:00:00
Evolution: User-assisted execution of arbitrary code
2007-06-06 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:19:11
nvd
nvd
CVE-2007-3257
2007-06-19 16:30:00
CVE-2007-1002
2007-03-21 22:19:00
redhat
redhat
(RHSA-2007:0510) Important: evolution-data-server security update
2007-06-25 00:00:00
(RHSA-2007:0158) Moderate: evolution security update
2007-05-03 00:00:00
(RHSA-2007:0509) Important: evolution security update
2007-06-25 00:00:00
cve
cve
CVE-2007-1002
2007-03-21 22:19:00
CVE-2007-3257
2007-06-19 16:30:00
freebsd
freebsd
evolution-data-server -- remote execution of arbitrary code vulnerability
2007-06-23 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: evolution-2.8.3-2.fc6
2007-04-04 20:40:31
[SECURITY] Fedora Core 5 Update: evolution-2.6.3-2.fc5
2007-04-04 20:42:00