[Git][security-tracker-team/security-tracker][master] Track evolution-data-server under CVE-2018-15587 and add upstream references

Salvatore Bonaccorso carnil at debian.org
Fri Mar 15 06:57:44 GMT 2019 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f6f251cf by Salvatore Bonaccorso at 2019-03-15T06:57:05Z
Track evolution-data-server under CVE-2018-15587 and add upstream references

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -35233,9 +35233,16 @@ CVE-2018-15588 (MailMate before 1.11.3 mishandles a suspicious HTML/MIME structu
 	NOT-FOR-US: MailMate
 CVE-2018-15587 (GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being ...)
 	- evolution <unfixed> (bug #924616)
+	- evolution-data-server <unfixed>
+	NOTE: https://gitlab.gnome.org/GNOME/evolution/issues/120
 	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=796424
-	NOTE: https://gitlab.gnome.org/GNOME/evolution/commit/9c55a311325f5905d8b8403b96607e46cf343f21
-	NOTE: https://gitlab.gnome.org/GNOME/evolution/commit/f66cd3e1db301d264563b4222a3574e2e58e2b85
+	NOTE: https://gitlab.gnome.org/GNOME/evolution-data-server/issues/3
+	NOTE: https://gitlab.gnome.org/GNOME/evolution-data-server/issues/75
+	NOTE: https://gitlab.gnome.org/GNOME/evolution/commit/9c55a311325f5905d8b8403b96607e46cf343f21 (evolution)
+	NOTE: https://gitlab.gnome.org/GNOME/evolution/commit/f66cd3e1db301d264563b4222a3574e2e58e2b85 (evolution)
+	NOTE: https://gitlab.gnome.org/GNOME/evolution-data-server/commit/93306a296c64b48d12c356804f131048643eaa0a (evolution-data-server)
+	NOTE: https://gitlab.gnome.org/GNOME/evolution-data-server/commit/accb0e2415681565e4dac00cf1c4303c313ad29e (evolution-data-server)
+	NOTE: https://gitlab.gnome.org/GNOME/evolution-data-server/commit/5cd59aee67450e8750eb3cb2d357d0947f199f61 (evolution-data-server)
 CVE-2018-15586 (Enigmail before 2.0.6 is prone to to OpenPGP signatures being spoofed ...)
 	- enigmail 2:2.0.6.1-2
 	[jessie] - enigmail <end-of-life> (see https://lists.debian.org/debian-lts-announce/2019/02/msg00002.html)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f6f251cff4801a452acddc3256bbb77e8e4050b8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f6f251cff4801a452acddc3256bbb77e8e4050b8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190315/641519e9/attachment.html>

More information about the debian-security-tracker-commits mailing list