evolution is vulnerablet o arbitrary code execution. Multiple integer overflow flaws which could cause heap-based buffer overflows were found in the Base64 encoding routines used by Evolution Data Server. This could cause an application using Evolution Data Server to crash, or, possibly, execute an arbitrary code when large untrusted data blocks were Base64-encoded.
lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html
ocert.org/patches/2008-015/camel-CVE-2009-0587.diff
ocert.org/patches/2008-015/evc-CVE-2009-0587.diff
openwall.com/lists/oss-security/2009/03/12/2
osvdb.org/52702
osvdb.org/52703
secunia.com/advisories/34338
secunia.com/advisories/34339
secunia.com/advisories/34348
secunia.com/advisories/34351
secunia.com/advisories/35357
www.debian.org/security/2009/dsa-1813
www.mandriva.com/security/advisories?name=MDVSA-2009:078
www.ocert.org/advisories/ocert-2008-015.html
www.redhat.com/security/updates/classification/#moderate
www.redhat.com/support/errata/RHSA-2009-0354.html
www.redhat.com/support/errata/RHSA-2009-0355.html
www.redhat.com/support/errata/RHSA-2009-0358.html
www.securityfocus.com/archive/1/501712/100/0/threaded
www.securityfocus.com/bid/34100
www.ubuntu.com/usn/USN-733-1
access.redhat.com/errata/RHSA-2009:0354
access.redhat.com/errata/RHSA-2009:0355
access.redhat.com/errata/RHSA-2009:0358
access.redhat.com/security/cve/CVE-2009-0587
bugzilla.redhat.com/show_bug.cgi?id=488226
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11385