[CVE-2008-1108, CVE-2008-1109] Evolution iCalendar buffer overflows
Bug #237956 reported by
Till Ulen
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
evolution (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
Dapper |
Fix Released
|
Undecided
|
Jamie Strandboge | ||
Feisty |
Fix Released
|
Undecided
|
Jamie Strandboge | ||
Gutsy |
Fix Released
|
Undecided
|
Jamie Strandboge | ||
Hardy |
Fix Released
|
Undecided
|
Jamie Strandboge |
Bug Description
Binary package hint: evolution
CVE-2008-1108 description:
"Buffer overflow in Evolution 2.22.1, when the ITip Formatter plugin is disabled, allows remote attackers to execute arbitrary code via a long timezone string in an iCalendar attachment."
CVE-2008-1109 description:
"Heap-based buffer overflow in Evolution 2.22.1 allows user-assisted remote attackers to execute arbitrary code via a long DESCRIPTION property in an iCalendar attachment, which is not properly handled during a reply in the calendar view (aka the Calendars window)."
http://
http://
http://
Changed in evolution: | |
assignee: | nobody → jdstrand |
status: | New → Fix Committed |
assignee: | nobody → jdstrand |
status: | New → Fix Committed |
assignee: | nobody → jdstrand |
status: | New → Fix Committed |
assignee: | nobody → jdstrand |
status: | New → Fix Committed |
To post a comment you must log in.
thank you for your bug report, that's already being worked by the ubuntu security team, confirming the bug