Overview

Request 609845 accepted

enigmail 2.0.4:
* CVE-2017-17688: CFB gadget attacks allowed to exfiltrate
plaintext out of encrypted emails. enigmail now fails on GnuPG
integrit check warnings for old Algorithms (EFAIL, bsc#1093151)
* CVE-2017-17689: CBC gadget attacks allows to exfiltrate
plaintext out of encrypted emails (EFAIL), bsc#1093152)

Request History
Andreas Stieger's avatar

AndreasStieger created request

enigmail 2.0.4:
* CVE-2017-17688: CFB gadget attacks allowed to exfiltrate
plaintext out of encrypted emails. enigmail now fails on GnuPG
integrit check warnings for old Algorithms (EFAIL, bsc#1093151)
* CVE-2017-17689: CBC gadget attacks allows to exfiltrate
plaintext out of encrypted emails (EFAIL), bsc#1093152)

Saul Goodman's avatar

licensedigger accepted review

ok

Maintenance Bot's avatar

maintbot added factory-source as a reviewer

Maintenance Bot's avatar

maintbot accepted review

ok

Maintenance Bot's avatar

maintbot added mozilla:Factory as a reviewer

Submission for None by someone who is not maintainer in the devel project (mozilla:Factory). Please review

Wolfgang Rosenauer's avatar

wrosenauer accepted review

Source in Factory Checker's avatar

factory-source added backports-reviewers as a reviewer

Automated review failed. Needs fallback reviewer.

Source in Factory Checker's avatar

factory-source accepted review

the package needs to be accepted in openSUSE:Factory or openSUSE:Leap:42.2:Update or openSUSE:Leap:42.2 or openSUSE:Leap:42.1:Update or openSUSE:Leap:42.1 first

Andreas Stieger's avatar

AndreasStieger accepted request

start update

openSUSE Build Service is sponsored by
Places