Fedora 29: evolution-ews Security Update
Summary
This package allows Evolution to interact with Microsoft Exchange servers,
versions 2007 and later, through its Exchange Web Services (EWS) interface.
Security fix for CVE-2019-3890 - SSL Certificates are not validated
* Tue Apr 2 2019 Milan Crha
- Add patch for RH bug #1678314 (CVE-2019-3890 - SSL Certificates are not validated)
* Mon Feb 4 2019 Milan Crha
- Update to 3.30.5
* Mon Dec 10 2018 Milan Crha
- Update to 3.30.3
* Mon Oct 22 2018 Milan Crha
- Update to 3.30.2
[ 1 ] Bug #1678313 - CVE-2019-3890 evolution-ews: all certificate errors ignored if configured to ignore an initial error in gnome-online-accounts creation resulting in the connection open to being viewed and modified.
https://bugzilla.redhat.com/show_bug.cgi?id=1678313
su -c 'dnf upgrade --advisory FEDORA-2019-3a2cc6a0b9' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
FEDORA-2019-3a2cc6a0b9 2019-04-06 19:42:42.476832 Product : Fedora 29 Version : 3.30.5 Release : 2.fc29 URL : https://wiki.gnome.org/Apps/Evolution Summary : Evolution extension for Exchange Web Services Description : This package allows Evolution to interact with Microsoft Exchange servers, versions 2007 and later, through its Exchange Web Services (EWS) interface. Security fix for CVE-2019-3890 - SSL Certificates are not validated * Tue Apr 2 2019 Milan Crha - 3.30.5-2 - Add patch for RH bug #1678314 (CVE-2019-3890 - SSL Certificates are not validated) * Mon Feb 4 2019 Milan Crha - 3.30.5-1 - Update to 3.30.5 * Mon Dec 10 2018 Milan Crha - 3.30.3-1 - Update to 3.30.3 * Mon Oct 22 2018 Milan Crha - 3.30.2-1 - Update to 3.30.2 [ 1 ] Bug #1678313 - CVE-2019-3890 evolution-ews: all certificate errors ignored if configured to ignore an initial error in gnome-online-accounts creation resulting in the connection open to being viewed and modified. https://bugzilla.redhat.com/show_bug.cgi?id=1678313 su -c 'dnf upgrade --advisory FEDORA-2019-3a2cc6a0b9' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Change Log
References