USN-3998-1 evolution-data-server vulnerability

Marcus Brinkmann discovered that Evolution Data Server did not correctly interpret the output from GPG when decrypting encrypted messages. Under certain circumstances, this could result in displaying clear-text portions of encrypted messages as though they were encrypted...

USN-3998-1: Evolution Data Server vulnerability

Marcus Brinkmann discovered that Evolution Data Server did not correctly interpret the output from GPG when decrypting encrypted messages. Under certain circumstances, this could result in displaying clear-text portions of encrypted messages as though they were encrypted...

10 years of virtual dynamite: A high-level retrospective of ATM malware

Executive summary It has been 10 years since the discovery of Skimer, first malware specifically designed to attack automated teller machines ATMs. At the time, the learning curve for understanding its functionality was rather steep and analysis required specific knowledge of a manufacturer's ATM...

'5G is Coming,' But Can the Security Industry Keep Up?

THE HAGUE, Netherlands – With the advent of 5G, the tech community is bracing itself for new applications like self-driving cars and other IoT applications. But what does that mean for the security landscape? At the GSMA Mobile 360 Conference taking place this week in the Netherlands, experts she...

openSUSE Security Update : evolution (openSUSE-2019-1453)

This update for evolution fixes the following issues : Security issue fixed : - CVE-2018-15587: Fixed an issue with spoofed pgp signatures by using specially crafted emails bsc1125230. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network...

openSUSE: Security Advisory for evolution (openSUSE-SU-2019:1453-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2019:1453-1 Security update for evolution

This update for evolution fixes the following issues: Security issue fixed: - CVE-2018-15587: Fixed an issue with spoofed pgp signatures by using specially crafted emails bsc1125230. This update was imported from the SUSE:SLE-15:Update update project...

Security update for evolution (moderate)

openSUSE Security Update: Security update for evolution Announcement ID: openSUSE-SU-2019:1453-1 Rating: moderate References: 1125230 Cross-References: CVE-2018-15587 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for...

openSUSE Security Update : evolution (openSUSE-2019-1431)

This update for evolution fixes the following issues : Security issue fixed : - CVE-2018-15587: Fixed an issue with spoofed pgp signatures by using specially crafted emails bsc1125230. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The...

DDoS attacks in Q1 2019

News overview The start of the year saw the appearance of various new tools in the arsenal of DDoS-attack masterminds. In early February, for instance, the new botnet Cayosin, assembled from elements of Qbot, Mirai, and other publicly available malware, swam into view. Cybersecurity experts were...

Security update for evolution (moderate)

openSUSE Security Update: Security update for evolution Announcement ID: openSUSE-SU-2019:1431-1 Rating: moderate References: 1125230 Cross-References: CVE-2018-15587 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...

SUSE SLED15 / SLES15 Security Update : evolution (SUSE-SU-2019:1266-1)

This update for evolution fixes the following issues : Security issue fixed : CVE-2018-15587: Fixed an issue with spoofed pgp signatures by using specially crafted emails bsc1125230. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...

SUSE-SU-2019:1266-1 Security update for evolution

This update for evolution fixes the following issues: Security issue fixed: - CVE-2018-15587: Fixed an issue with spoofed pgp signatures by using specially crafted emails bsc1125230...

Three Common Questions (and Answers) About Next-Gen AV

Most organizations with traditional, or legacy, antivirus AV solutions are well aware that they are no longer protected from the more advanced tactics and threats of attackers today. Signatures just can’t keep up with emerging threats. But that doesn’t mean that everyone is ready to dive head fir...

Fedora Update for evolution-data-server FEDORA-2019-3a2cc6a0b9

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora Update for evolution-ews FEDORA-2019-3a2cc6a0b9

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Over Dozen Popular Email Clients Found Vulnerable to Signature Spoofing Attacks

A team of security researchers has discovered several vulnerabilities in various implementations of OpenPGP and S/MIME email signature verification that could allow attackers to spoof signatures on over a dozen of popular email clients. The affected email clients include Thunderbird, Microsoft...

Debian DLA-1766-1 : evolution security update

Hanno Bck discovered that GNOME Evolution is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted HTML email. This issue was mitigated by moving the security bar with encryption and signature information above the message headers. For Debian 8 'Jessie', this...

Debian: Security Advisory (DLA-1766-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 1766-1] evolution security update

Package : evolution Version : 3.12.9git20141130.241663-1+deb8u1 CVE ID : CVE-2018-15587 Debian Bug : 924616 Hanno Böck discovered that GNOME Evolution is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted HTML email. This issue was mitigated by moving the...