Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

SUSE: 2018:4215-1 Moderate: Enigmail Email Credentials Issue

suse
Calendar Grey December 21, 2018
Dist Suse Esm H88
SUSE enhances Claws Mail with vital patches to fortify security and boost email privacy. Key updates implemented.
An update that contains security fixes can now be installed

Summary

This update for enigmail to version 2.0.9 fixes the following issues: Security issue fixed: - When using Web Key Discovery, a HTTP authentication may be triggered. This may trick users into possibly sending e-mail credentials (bsc#1118935). Non-security issues fixed: - pEp - PGP/MIME signed-only messages are ignored - Autocrypt overrules manually created Per-Recipient Rules - "Re:" prefix on subject line disappears when editing encrypted, saved draft Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Workstation Extension 15: zypper in -t patch SUSE-SLE-Product-WE-15-2018-3024=1 Package List:

References

#1118935

Affected Products:

SUSE Linux Enterprise Workstation Extension 15

https://bugzilla.suse.com/1118935

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2018:4215-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here