Oval Definition:oval:com.redhat.rhsa:def:20070158
Revision Date:2007-05-03Version:635
Title:RHSA-2007:0158: evolution security update (Moderate)
Description:Evolution is the GNOME collection of personal information management (PIM) tools.

  • A format string bug was found in the way Evolution parsed the category field in a memo. If a user tried to save and then view a carefully crafted memo, arbitrary code may be executed as the user running Evolution. (CVE-2007-1002)

    This flaw did not affect the versions of Evolution shipped with Red Hat Enterprise Linux 2.1, 3, or 4.

    All users of Evolution should upgrade to these updated packages, which contain a backported patch which resolves this issue.

    Red Hat would like to thank Ulf Härnhammar of Secunia Research for reporting this issue.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2007-1002
    RHSA-2007:0158
    RHSA-2007:0158-01
    RHSA-2007:0158-01
    Platform(s):Red Hat Enterprise Linux 5
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • evolution is earlier than 0:2.8.0-33.0.1.el5
  • AND evolution is signed with Red Hat redhatrelease2 key
  • evolution-devel is earlier than 0:2.8.0-33.0.1.el5
  • AND evolution-devel is signed with Red Hat redhatrelease2 key
    • BACK