SciLinux: CVE-2007-1558 evolution SL4.x, SL3,x i386/x86_64
Summary
Date: Mon, 21 May 2007 16:01:39 -0500Reply-To: Troy DawsonSender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for evolution on SL4.x, SL3,x i386/x86_64Comments: To: scientific-linux-errata@fnal.govSynopsis: Moderate: evolution security updateIssue date: 2007-05-17CVE Names: CVE-2007-1558A flaw was found in the way Evolution processed certain APOP authentication requests. A remote attacker could potentially acquire certain portions of a user's authentication credentials by sending certain responses when evolution-data-server attempted to authenticate against an APOP server. (CVE-2007-1558)SL 3.0.x SRPMS: evolution-1.4.5-20.el3.src.rpm i386: evolution-1.4.5-20.el3.i386.rpm evolution-devel-1.4.5-20.el3.i386.rpm x86_64: evolution-1.4.5-20.el3.x86_64.rpm evolution-devel-1.4.5-20.el3.x86_64.rpmSL 4.x SRPMS: evolution-2.0.2-35.0.2.el4.src.rpm i386: evolution-2.0.2-35.0.2.el4.i386.rpm evolution-devel-2.0.2-35.0.2.el4.i386.rpm x86_64: evolution-2.0.2-35.0.2.el4.x86_64.rpm evolution-devel-2.0.2-35.0.2.el4.x86_64.rpm-Connie Sieh-Troy Dawson