pkg:Debian/evolution
34 total CVEsCRITICAL2HIGH1MEDIUM5LOW1
✅ Check your installed version
All known vulnerabilities
- from 0, < 1.0.5-1woody2
- from 0, < 2.0.3-1.2
- HIGH7.5CVE-2013-4166The gpg_ctx_add_recipient function in camel/camel-gpg-context.c in GNOME Evolution 3.8.4 and earlier and Evolution Data Server 3.9.5 and ea…from 0
- from 0, < 3.36.0-1
- from 0, < 3.12.9~git20141130.241663-1+deb8u1
- from 0, < 3.30.5-1.1
- from 0, < 3.22.6-1+deb9u2
- MEDIUM5.9CVE-2017-17689The S/MIME specification allows a Cipher Block Chaining (CBC) malleability-gadget attack that can indirectly lead to plaintext exfiltration…from 0
- LOW3.3CVE-2021-3349GNOME Evolution through 3.38.3 produces a "Valid signature" message for an unknown identifier on a previously trusted key because Evolution…from 0
- —CVE-2011-3201GNOME Evolution before 3.2.3 allows user-assisted remote attackers to read arbitrary files via the attachment parameter to a mailto: URL, w…from 0
- —CVE-2009-1631The Mailer component in Evolution 2.26.1 and earlier uses world-readable permissions for the .evolution directory, and certain directories…from 0, < 2.29.90-1
- —CVE-2008-1109Heap-based buffer overflow in Evolution 2.22.1 allows user-assisted remote attackers to execute arbitrary code via a long DESCRIPTION prope…from 0, < 2.22.2-1.1
- —CVE-2008-1108Buffer overflow in Evolution 2.22.1, when the ITip Formatter plugin is disabled, allows remote attackers to execute arbitrary code via a lo…from 0, < 2.22.2-1.1
- from 0, < 2.12.3-1.1
- from 0, < 2.0.4-2sarge3
- from 0, < 2.12.0-1
- from 0, < 2.0.4-2sarge2
- from 0, < 2.10.2-1
- —CVE-2007-1266Evolution 2.8.1 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents Evolution from visually dist…from 0
- —CVE-2006-2789Evolution 2.2.x and 2.3.x in GNOME 2.7 and 2.8, when "load images if sender in addressbook" is enabled, allows remote attackers to cause a…from 0, < 2.4.0-1
- —CVE-2006-0040GNOME Evolution 2.4.2.1 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via a text e-mail wit…from 0, < 2.10.1
- —CVE-2006-0528The cairo library (libcairo), as used in GNOME Evolution and possibly other products, allows remote attackers to cause a denial of service…from 0, < 2.2.3-4
- from 0, < 1.0.5-1woody3
- —CVE-2005-2550Format string vulnerability in Evolution 1.4 through 2.3.6.1 allows remote attackers to cause a denial of service (crash) and possibly exec…from 0, < 2.2.3-3
- from 0, < 2.2.3-3
- from 0, < 2.2.3-2etch1
- —CVE-2005-0806Evolution 2.0.3 allows remote attackers to cause a denial of service (application crash or hang) via crafted messages, possibly involving c…from 0, < 2.0.4-2
- —CVE-2003-0296The IMAP Client for Evolution 1.2.4 allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code v…from 0, < 1.3.2
- —CVE-2003-0133GtkHTML, as included in Evolution before 1.2.4, allows remote attackers to cause a denial of service (crash) via certain malformed messages.from 0, < 1.2.4
- —CVE-2002-1471The camel component for Ximian Evolution 1.0.x and earlier does not verify certificates when it establishes a new SSL connection after prev…from 0, < 1.2.0-1
- —CVE-2003-0128The try_uudecoding function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a deni…from 0, < 1.2.3
- —CVE-2003-0129Ximian Evolution Mail User Agent 1.2.2 and earlier allows remote attackers to cause a denial of service (memory consumption) via a mail mes…from 0, < 1.2.3
- —CVE-2003-0130The handle_image function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters,…from 0, < 1.2.3
- —CVE-2002-1765Evolution 1.0.3 and 1.0.4 allows remote attackers to cause a denial of service (memory consumption and crash) via an email with a malformed…from 0, < 1.0.5