Latest gnome evolution Vulnerabilities

CVE-2021-3349
** DISPUTED ** GNOME Evolution through 3.38.3 produces a "Valid signature" message for an unknown identifier on a previously trusted key because Evolution does not retrieve enough information from the...
GNOME Evolution<=3.38.3
<=3.38.3
CVE-2020-11879
An issue was discovered in GNOME Evolution before 3.35.91. By using the proprietary (non-RFC6068) "mailto?attach=..." parameter, a website (or other source of mailto links) can make Evolution attach l...
GNOME Evolution<3.35.91
CVE-2013-4166
The gpg_ctx_add_recipient function in camel/camel-gpg-context.c in GNOME Evolution 3.8.4 and earlier and Evolution Data Server 3.9.5 and earlier does not properly select the GPG key to use for email e...
GNOME Evolution<=3.8.4
Gnome Evolution Data Server<=3.9.5
Redhat Enterprise Linux Desktop=6.0
Redhat Enterprise Linux Server=6.0
Redhat Enterprise Linux Workstation=6.0
CVE-2018-15587
GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as...
GNOME Evolution<=3.28.2
Debian Debian Linux=8.0
debian/evolution
ubuntu/evolution<3.31.90-1
ubuntu/evolution<3.31.90-1
ubuntu/evolution<3.31.90-1
and 20 more
CVE-2016-10727
camel/providers/imapx/camel-imapx-server.c in the IMAPx component in GNOME evolution-data-server before 3.21.2 proceeds with cleartext data containing a password if the client wishes to use STARTTLS b...
Canonical Ubuntu Linux=14.04
Canonical Ubuntu Linux=16.04
GNOME Evolution<3.21.2
debian/evolution-data-server
ubuntu/evolution-data-server<3.21.2
ubuntu/evolution-data-server<3.18.5-1ubuntu1.1
and 1 more
CVE-2018-12422
** DISPUTED ** addressbook/backends/ldap/e-book-backend-ldap.c in Evolution-Data-Server in GNOME Evolution through 3.29.2 might allow attackers to trigger a Buffer Overflow via a long query that is pr...
GNOME Evolution<=3.29.2
<=3.29.2

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203