(RHSA-2007:0353) Moderate: evolution security update

2007-05-17T04:00:00
ID RHSA-2007:0353
Type redhat
Reporter RedHat
Modified 2017-09-08T12:12:05

Description

Evolution is the GNOME collection of personal information management (PIM) tools.

A flaw was found in the way Evolution processed certain APOP authentication requests. A remote attacker could potentially acquire certain portions of a user's authentication credentials by sending certain responses when evolution-data-server attempted to authenticate against an APOP server. (CVE-2007-1558)

All users of Evolution should upgrade to these updated packages, which contain a backported patch which resolves this issue.