SUSE Package Hub - openSUSE-2021-227

Update Info

openSUSE-2021-227

Security update for messagelib

Type: security

Severity: moderate

Issued: 2021-02-02

Description:

This update for messagelib fixes the following issues:

- CVE-2019-10732: Prevented accidental disclosure of encrypted content when replying (boo#1131885).

This update was imported from the openSUSE:Leap:15.1:Update update project.

References

CVE: CVE-2019-10732
Bugzilla: 1131885 VUL-1: CVE-2019-10732: kmail: attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email

Packages

messagelib-18.12.3-bp151.3.3.1