Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:29929
HistoryOct 09, 2013 - 12:00 a.m.

[USN-1922-1] Evolution Data Server vulnerability

2013-10-0900:00:00
vulners.com
33
JSON

==========================================================================
Ubuntu Security Notice USN-1922-1
July 31, 2013

evolution-data-server vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 13.04
  • Ubuntu 12.10
  • Ubuntu 12.04 LTS

Summary:

Evolution would sometimes encrypt email to the wrong recipient.

Software Description:

  • evolution-data-server: Evolution suite data server

Details:

Yves-Alexis Perez discovered that Evolution Data Server did not properly
select GPG recipients. Under certain circumstances, this could result in
Evolution encrypting email to an unintended recipient.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 13.04:
libcamel-1.2-40 3.6.4-0ubuntu1.1

Ubuntu 12.10:
libcamel-1.2-40 3.6.2-0ubuntu0.2

Ubuntu 12.04 LTS:
libcamel-1.2-29 3.2.3-0ubuntu7.1

After a standard system update you need to restart Evolution to make all
the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1922-1
CVE-2013-4166

Package Information:
https://launchpad.net/ubuntu/+source/evolution-data-server/3.6.4-0ubuntu1.1
https://launchpad.net/ubuntu/+source/evolution-data-server/3.6.2-0ubuntu0.2
https://launchpad.net/ubuntu/+source/evolution-data-server/3.2.3-0ubuntu7.1

– ubuntu-security-announce mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

Related

openvas 5
nessus 5
mageia 1
securityvulns 1
centos 1
ubuntucve 1
oraclelinux 1
veracode 1
cve 1
ubuntu 1
prion 1
redhat 1
debiancve 1
openvas
openvas
RedHat Update for evolution RHSA-2013:1540-02
2013-11-21 00:00:00
Ubuntu Update for evolution-data-server USN-1922-1
2013-08-08 00:00:00
Oracle Linux Local Check: ELSA-2013-1540
2015-10-06 00:00:00
nessus
nessus
RHEL 6 : evolution (RHSA-2013:1540)
2013-11-21 00:00:00
Ubuntu 12.04 LTS / 12.10 / 13.04 : evolution-data-server vulnerability (USN-1922-1)
2013-08-01 00:00:00
Scientific Linux Security Update : evolution on SL6.x i386/x86_64 (20131121)
2013-12-10 00:00:00
mageia
mageia
Updated evolution-data-server package fixes security vulnerability.
2013-08-11 16:28:03
securityvulns
securityvulns
Evolution / libcamel messages encryption vulnerabilities
2013-10-09 00:00:00
centos
centos
cheese, control, ekiga, evolution, finch, gnome, gtkhtml3, libgdata, libpurple, nautilus, openchange, pidgin, planner, totem security update
2013-11-26 13:31:12
ubuntucve
ubuntucve
CVE-2013-4166
2013-07-26 00:00:00
oraclelinux
oraclelinux
evolution security, bug fix, and enhancement update
2013-11-21 00:00:00
veracode
veracode
Wrong GPG Key Selection
2019-01-15 09:01:44
cve
cve
CVE-2013-4166
2020-02-06 15:15:00
ubuntu
ubuntu
Evolution Data Server vulnerability
2013-07-31 00:00:00
prion
prion
Information disclosure
2020-02-06 15:15:00
redhat
redhat
(RHSA-2013:1540) Low: evolution security, bug fix, and enhancement update
2013-11-21 00:00:00
debiancve
debiancve
CVE-2013-4166
2020-02-06 15:15:00
JSON
Related for SECURITYVULNS:DOC:29929
openvas5nessus5mageia1securityvulns1centos1ubuntucve1oraclelinux1veracode1cve1ubuntu1prion1redhat1debiancve1