CVE-2018-15587 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	High
Remote	Yes
Type	Content spoofing
Description	GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as an attachment.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-889	evolution	3.30.5-1	3.32.0-1	High	Fixed

Date	Advisory	Group	Package	Severity	Type
02 Apr 2019	ASA-201904-1	AVG-889	evolution	High	content spoofing

References
https://bugzilla.gnome.org/show_bug.cgi?id=796424 https://gitlab.gnome.org/GNOME/evolution/issues/120