14 matches found
EUVD-2005-2551
Malware in sbrugna...
RHSA-2005:238 Red Hat Security Advisory: evolution security update
Bulletin has no description...
RHSA-2020:4649 Red Hat Security Advisory: evolution security and bug fix update
Bulletin has no description...
OPENSUSE-SU-2019:1453-1 Security update for evolution
This update for evolution fixes the following issues: Security issue fixed: - CVE-2018-15587: Fixed an issue with spoofed pgp signatures by using specially crafted emails bsc1125230. This update was imported from the SUSE:SLE-15:Update update project...
CVE-2009-1631
The Mailer component in Evolution 2.26.1 and earlier uses world-readable permissions for the .evolution directory, and certain directories and files under .evolution/ related to local mail, which allows local users to obtain sensitive information by reading these files...
CVE-2009-0547
Evolution 2.22.3.1 checks S/MIME signatures against a copy of the e-mail text within a signed-data blob, not the copy of the e-mail text displayed to the user, which allows remote attackers to spoof a signature by modifying the latter copy, a different vulnerability than CVE-2008-5077...
CVE-2008-1109
Heap-based buffer overflow in Evolution 2.22.1 allows user-assisted remote attackers to execute arbitrary code via a long DESCRIPTION property in an iCalendar attachment, which is not properly handled during a reply in the calendar view aka the Calendars window...
CVE-2008-1108
Buffer overflow in Evolution 2.22.1, when the ITip Formatter plugin is disabled, allows remote attackers to execute arbitrary code via a long timezone string in an iCalendar attachment...
CVE-2008-0072
Format string vulnerability in the emfmultipartencrypted function in mail/em-format.c in Evolution 2.12.3 and earlier allows remote attackers to execute arbitrary code via a crafted encrypted message, as demonstrated using the Version field...
CVE-2005-2550
Format string vulnerability in Evolution 1.4 through 2.3.6.1 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via the calendar entries such as task lists, which are not properly handled when the user selects the Calendars tab...
CVE-2005-0102
Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier allows local users or remote malicious POP3 servers to execute arbitrary code via a length value of -1, which leads to a zero byte memory allocation and a buffer overflow...
CVE-2003-0133
GtkHTML, as included in Evolution before 1.2.4, allows remote attackers to cause a denial of service crash via certain malformed messages...
CVE-2002-1765
Evolution 1.0.3 and 1.0.4 allows remote attackers to cause a denial of service memory consumption and crash via an email with a malformed MIME header...
Linux news 12.07.00
Linux 2.4.0-test3 Вышло новое "нестабильное" ядро Linux: 2.4.0-test3. Подробнее: http://linuxtoday.com/newsstory.php3?ltsn=2000-07-11-001-04-NW-KN Linux Kernel 2.2.17pre11 Вышел очередной, одиннадцатый по счету, пререлиз нового стабильного ядра Linux - Linux Kernel 2.2.17. Подробнее:...