seahorse plugin in evolution decrypts files in .evolution and leaves them there!
Bug #176454 reported by
zanonmark
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| seahorse |
Unknown
|
High
|
|||
| seahorse-plugins |
Confirmed
|
Wishlist
|
|||
| seahorse-plugins (Ubuntu) |
Confirmed
|
Medium
|
Ubuntu Desktop Bugs | ||
Bug Description
Binary package hint: seahorse
There is a serious security hole in the Seahorse plugin for Evolution.
When you click on an attachment and choose the "Decrypt file" option, it decrypts the file under ./.evolution/
Once you close Evolution, the "clear" file remains there!
So
1) you did not read the attachment from Evolution (thus making this plugin useless), and
2) the "clear" attachment is still on the disk!
Thanks,
MZ
Revision history for this message
| Andreas Moog (ampelbein) wrote | #1 |
| Changed in seahorse: | |
| assignee: | nobody → andreas-moog |
| importance: | Undecided → Medium |
| status: | New → Incomplete |
Revision history for this message
| zanonmark (info-marcozanon) wrote Re: [Bug 176454] Re: seahorse plugin in evolution decrypts files in .evolution and leaves them there! | #2 |
Revision history for this message
| Andreas Moog (ampelbein) wrote | #3 |
| Changed in seahorse: | |
| assignee: | andreas-moog → desktop-bugs |
| status: | Incomplete → Triaged |
| Changed in seahorse: | |
| status: | Unknown → New |
| Changed in seahorse: | |
| status: | New → Invalid |
| Changed in seahorse-plugins: | |
| status: | Unknown → Confirmed |
| Changed in seahorse-plugins: | |
| importance: | Unknown → Wishlist |
| Changed in seahorse: | |
| importance: | Unknown → High |
| status: | Invalid → Unknown |
| Changed in seahorse-plugins (Ubuntu): | |
| status: | Triaged → Confirmed |
To post a comment you must log in.
Thank you for your report. Is this still an issue for you?