[ubuntu/bionic-updates] evolution-data-server 3.28.5-0ubuntu0.18.04.2 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Thu May 30 11:28:17 UTC 2019
evolution-data-server (3.28.5-0ubuntu0.18.04.2) bionic-security; urgency=medium
* SECURITY UPDATE: GPG email signature spoofing
- debian/patches/CVE-2018-15587-1.patch: Add more strict parsing for
output from gpg in src/camel/camel-gpg-context.c to ensure signatures
cannot be spoofed
- debian/patches/CVE-2018-15587-2.patch: Ensure decrypted output is
not truncated in src/camel/camel-gpg-context.c
- debian/patches/CVE-2018-15587-3.patch: Fix incomplete upstream patch in
src/camel/camel-gpg-context.c to ensure the entire message is read
Date: 2019-05-28 12:21:15.022921+00:00
Changed-By: Alex Murray <alex.murray at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/evolution-data-server/3.28.5-0ubuntu0.18.04.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Bionic-changes
mailing list