SUSE Package Hub - openSUSE-2019-601

Update Info

openSUSE-2019-601

Recommended update for enigmail

Type: security

Severity: moderate

Issued: 2019-03-23

Description:

This update for enigmail to 2.0.8 fixes the following issues:

The enigmail 2.0.8 release addresses a security issue and solves a few regression bugs.

* A security issue has been fixed that allows an attacker to prepare
  a plain, unauthenticated HTML message in a way that it looks like
  it's signed and/or encrypted (boo#1104036)

References

Bugzilla: 1104036 VUL-0: enigmail: spoofing of signed and/or encrypted messages via HTML messages

Packages

enigmail-2.0.8-21.1