19 matches found
Scientific Linux Security Update : evolution on SL5.x i386/x86_64
A flaw was found in the way Evolution parsed iCalendar timezone attachment data. If the Itip Formatter plug-in was disabled and a user opened a mail with a carefully crafted iCalendar attachment, arbitrary code could be executed as the user running Evolution. CVE-2008-1108 Note: the Itip Formatte...
Mandriva Linux Security Advisory : evolution (MDVSA-2008:111)
Alan Rad Pop of Secunia Research discovered the following two vulnerabilities in Evolution : Evolution did not properly validate timezone data when processing iCalendar attachments. If a user disabled the Itip Formatter plugin and viewed a crafted iCalendar attachment, an attacker could cause a...
Ubuntu Update for evolution vulnerabilities USN-615-1
Ubuntu Update for Linux kernel vulnerabilities USN-615-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6151.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for evolution vulnerabilities USN-615-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-615-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RedHat Update for evolution28 RHSA-2008:0515-01
Check for the Version of evolution28 OpenVAS Vulnerability Test RedHat Update for evolution28 RHSA-2008:0515-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...
CentOS Update for evolution28 CESA-2008:0515 centos4 x86_64
Check for the Version of evolution28 OpenVAS Vulnerability Test CentOS Update for evolution28 CESA-2008:0515 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
CentOS Update for evolution28 CESA-2008:0515 centos4 x86_64
Check for the Version of evolution28 OpenVAS Vulnerability Test CentOS Update for evolution28 CESA-2008:0515 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
Fedora Update for evolution FEDORA-2008-4990
Check for the Version of evolution OpenVAS Vulnerability Test Fedora Update for evolution FEDORA-2008-4990 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
SuSE Update for evolution SUSE-SA:2008:028
Check for the Version of evolution OpenVAS Vulnerability Test $Id: gbsuse2008028.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for evolution SUSE-SA:2008:028 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free...
Gentoo Security Advisory GLSA 200806-06 (evolution)
The remote host is missing updates announced in advisory GLSA 200806-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
evolution security update
CentOS Errata and Security Advisory CESA-2008:0514 Updated evolution packages that fix two buffer overflow vulnerabilities are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Evolution is the...
SuSE 10 Security Update : evolution (ZYPP Patch Number 5327)
Multiple buffer overflows have been fixed in evolution. CVE-2008-1108 / CVE-2008-1109 have been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
CentOS 4 : evolution28 (CESA-2008:0515)
Updated evolution28 packages that address two buffer overflow vulnerabilities are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Evolution is the integrated collection of e-mail, calendaring,...
Fedora 9 : evolution-2.22.2-2.fc9 (2008-4990)
Fix two buffer overflows in iCalendar .ics file fromat support discovered and reported by Alin Rad Pop of the Secunia Research: CVE-2008-1108, CVE-2008-1109, SA30298 See referenced bugzilla bugs or Secunia advisories for further details: http://secunia.com/advisories/30298...
Fedora 8 : evolution-2.12.3-5.fc8 (2008-5016)
Fix two buffer overflows in iCalendar .ics file fromat support discovered and reported by Alin Rad Pop of the Secunia Research: CVE-2008-1108, CVE-2008-1109, SA30298 See referenced bugzilla bugs or Secunia advisories for further details: http://secunia.com/advisories/30298...
CVE-2008-1109
Heap-based buffer overflow in Evolution 2.22.1 allows user-assisted remote attackers to execute arbitrary code via a long DESCRIPTION property in an iCalendar attachment, which is not properly handled during a reply in the calendar view aka the Calendars window...
CVE-2008-1109
Heap-based buffer overflow in Evolution 2.22.1 allows user-assisted remote attackers to execute arbitrary code via a long DESCRIPTION property in an iCalendar attachment, which is not properly handled during a reply in the calendar view aka the Calendars window...
CVE-2008-1109
Heap-based buffer overflow in Evolution 2.22.1 allows user-assisted remote attackers to execute arbitrary code via a long DESCRIPTION property in an iCalendar attachment, which is not properly handled during a reply in the calendar view aka the Calendars window...
CVE-2008-1109
CVE-2008-1109 affects Evolution (GNOME mail/calendar client), with a heap-based buffer overflow in parsing iCalendar attachments. If a user opens a crafted meeting reply containing an overly long "+DESCRIPTION" property, arbitrary code could be executed under the user’s privileges. The issue is t...