(RHSA-2007:0353) Moderate: evolution security update

ID RHSA-2007:0353
Type redhat
Reporter RedHat
Modified 2017-09-08T12:12:05


Evolution is the GNOME collection of personal information management (PIM) tools.

A flaw was found in the way Evolution processed certain APOP authentication requests. A remote attacker could potentially acquire certain portions of a user's authentication credentials by sending certain responses when evolution-data-server attempted to authenticate against an APOP server. (CVE-2007-1558)

All users of Evolution should upgrade to these updated packages, which contain a backported patch which resolves this issue.