Bugs fixes in "enigmail"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2018-12020 | mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote attackers to spoof | 2018-06-14 |
| CVE | CVE-2018-12019 | The signature verification routine in Enigmail before 2.0.7 interprets ... | 2018-06-14 |
| CVE | CVE-2017-17848 | An issue was discovered in Enigmail before 1.9.9. In a variant of CVE-2017-17847, signature spoofing is possible for multipart/related messages becau | 2018-01-22 |
| CVE | CVE-2017-17847 | An issue was discovered in Enigmail before 1.9.9. Signature spoofing is possible because the UI does not properly distinguish between an attachment s | 2018-01-22 |
| CVE | CVE-2017-17846 | An issue was discovered in Enigmail before 1.9.9. Regular expressions are exploitable for Denial of Service, because of attempts to match arbitrarily | 2018-01-22 |
| CVE | CVE-2017-17845 | An issue was discovered in Enigmail before 1.9.9. Improper Random Secret Generation occurs because Math.Random() is used by pretty Easy privacy (pEp) | 2018-01-22 |
| CVE | CVE-2017-17844 | An issue was discovered in Enigmail before 1.9.9. A remote attacker can obtain cleartext content by sending an encrypted data block (that the attacke | 2018-01-22 |
| CVE | CVE-2017-17843 | An issue was discovered in Enigmail before 1.9.9 that allows remote attackers to trigger use of an intended public key for encryption, because incorr | 2018-01-22 |
| CVE | CVE-2017-17848 | An issue was discovered in Enigmail before 1.9.9. In a variant of CVE-2017-17847, signature spoofing is possible for multipart/related messages becau | 2018-01-22 |
| CVE | CVE-2017-17847 | An issue was discovered in Enigmail before 1.9.9. Signature spoofing is possible because the UI does not properly distinguish between an attachment s | 2018-01-22 |
| CVE | CVE-2017-17846 | An issue was discovered in Enigmail before 1.9.9. Regular expressions are exploitable for Denial of Service, because of attempts to match arbitrarily | 2018-01-22 |
| CVE | CVE-2017-17845 | An issue was discovered in Enigmail before 1.9.9. Improper Random Secret Generation occurs because Math.Random() is used by pretty Easy privacy (pEp) | 2018-01-22 |
| CVE | CVE-2017-17844 | An issue was discovered in Enigmail before 1.9.9. A remote attacker can obtain cleartext content by sending an encrypted data block (that the attacke | 2018-01-22 |
| CVE | CVE-2017-17843 | An issue was discovered in Enigmail before 1.9.9 that allows remote attackers to trigger use of an intended public key for encryption, because incorr | 2018-01-22 |
| CVE | CVE-2017-17848 | An issue was discovered in Enigmail before 1.9.9. In a variant of CVE-2017-17847, signature spoofing is possible for multipart/related messages becau | 2018-01-22 |
| CVE | CVE-2017-17847 | An issue was discovered in Enigmail before 1.9.9. Signature spoofing is possible because the UI does not properly distinguish between an attachment s | 2018-01-22 |
| CVE | CVE-2017-17846 | An issue was discovered in Enigmail before 1.9.9. Regular expressions are exploitable for Denial of Service, because of attempts to match arbitrarily | 2018-01-22 |
| CVE | CVE-2017-17845 | An issue was discovered in Enigmail before 1.9.9. Improper Random Secret Generation occurs because Math.Random() is used by pretty Easy privacy (pEp) | 2018-01-22 |
| CVE | CVE-2017-17844 | An issue was discovered in Enigmail before 1.9.9. A remote attacker can obtain cleartext content by sending an encrypted data block (that the attacke | 2018-01-22 |
| CVE | CVE-2017-17843 | An issue was discovered in Enigmail before 1.9.9 that allows remote attackers to trigger use of an intended public key for encryption, because incorr | 2018-01-22 |
About
-
Send Feedback to @ubuntu_updates
