Oval Definition:oval:com.redhat.rhsa:def:20080177
Revision Date:2008-03-05Version:636
Title:RHSA-2008:0177: evolution security update (Critical)
Description:Evolution is the GNOME collection of personal information management (PIM) tools.

  • A format string flaw was found in the way Evolution displayed encrypted mail content. If a user opened a carefully crafted mail message, arbitrary code could be executed as the user running Evolution. (CVE-2008-0072)

    All users of Evolution should upgrade to these updated packages, which contain a backported patch which resolves this issue.

    Red Hat would like to thank Ulf Härnhammar of Secunia Research for finding and reporting this issue.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2008-0072
    RHSA-2008:0177
    RHSA-2008:0177-01
    RHSA-2008:0177-01
    Platform(s):Red Hat Enterprise Linux 4
    Red Hat Enterprise Linux 5
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • evolution is earlier than 0:2.0.2-35.0.4.el4_6.1
  • AND evolution is signed with Red Hat redhatrelease2 key
  • evolution-devel is earlier than 0:2.0.2-35.0.4.el4_6.1
  • AND evolution-devel is signed with Red Hat redhatrelease2 key
  • evolution28 is earlier than 0:2.8.0-53.el4_6.2
  • AND evolution28 is signed with Red Hat redhatrelease2 key
  • evolution28-devel is earlier than 0:2.8.0-53.el4_6.2
  • AND evolution28-devel is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • evolution is earlier than 0:2.8.0-40.el5_1.1
  • AND evolution is signed with Red Hat redhatrelease2 key
  • evolution-devel is earlier than 0:2.8.0-40.el5_1.1
  • AND evolution-devel is signed with Red Hat redhatrelease2 key
    • BACK