Evolution is the GNOME collection of personal information management (PIM)
tools.
A format string flaw was found in the way Evolution displayed encrypted
mail content. If a user opened a carefully crafted mail message, arbitrary
code could be executed as the user running Evolution. (CVE-2008-0072)
All users of Evolution should upgrade to these updated packages, which
contain a backported patch which resolves this issue.
Red Hat would like to thank Ulf HΓ€rnhammar of Secunia Research for finding
and reporting this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | x86_64 | evolution | <Β 2.8.0-40.el5_1.1 | evolution-2.8.0-40.el5_1.1.x86_64.rpm |
RedHat | 4 | ppc | evolution-devel | <Β 2.0.2-35.0.4.el4_6.1 | evolution-devel-2.0.2-35.0.4.el4_6.1.ppc.rpm |
RedHat | 4 | s390x | evolution | <Β 2.0.2-35.0.4.el4_6.1 | evolution-2.0.2-35.0.4.el4_6.1.s390x.rpm |
RedHat | 4 | i386 | evolution28-devel | <Β 2.8.0-53.el4_6.2 | evolution28-devel-2.8.0-53.el4_6.2.i386.rpm |
RedHat | 4 | s390x | evolution28 | <Β 2.8.0-53.el4_6.2 | evolution28-2.8.0-53.el4_6.2.s390x.rpm |
RedHat | 4 | src | evolution | <Β 2.0.2-35.0.4.el4_6.1 | evolution-2.0.2-35.0.4.el4_6.1.src.rpm |
RedHat | 4 | s390 | evolution28-devel | <Β 2.8.0-53.el4_6.2 | evolution28-devel-2.8.0-53.el4_6.2.s390.rpm |
RedHat | 4 | ppc | evolution28-devel | <Β 2.8.0-53.el4_6.2 | evolution28-devel-2.8.0-53.el4_6.2.ppc.rpm |
RedHat | 4 | x86_64 | evolution-devel | <Β 2.0.2-35.0.4.el4_6.1 | evolution-devel-2.0.2-35.0.4.el4_6.1.x86_64.rpm |
RedHat | 4 | ppc | evolution | <Β 2.0.2-35.0.4.el4_6.1 | evolution-2.0.2-35.0.4.el4_6.1.ppc.rpm |