CVE-2018-15587

Source
Severity High
Remote Yes
Type Content spoofing
Description
GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as an attachment.
Group Package Affected Fixed Severity Status Ticket
AVG-889 evolution 3.30.5-1 3.32.0-1 High Fixed
References
https://bugzilla.gnome.org/show_bug.cgi?id=796424
https://gitlab.gnome.org/GNOME/evolution/issues/120