UbuntuUpdates.org

Package "evolution-data-server"

Name: evolution-data-server

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Installed tests for the evolution database backend server

Latest version: 3.36.4-0ubuntu1
Release: focal (20.04)
Level: updates
Repository: universe

Links



Other versions of "evolution-data-server" in Focal

Repository Area Version
base main 3.36.1-2
security main 3.36.3-0ubuntu1.1
security universe 3.36.3-0ubuntu1.1
updates main 3.36.4-0ubuntu1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 3.36.4-0ubuntu1 2020-08-10 15:06:36 UTC

  evolution-data-server (3.36.4-0ubuntu1) focal; urgency=medium

  * New stable version (lp: #1886644), fixes
    - CVE-2020-14928: Response Injection via STARTTLS in SMTP and POP3
  * Updated symbols for the new version

 -- Sebastien Bacher <email address hidden> Tue, 07 Jul 2020 12:38:45 +0200

Source diff to previous version
1886644 SRU the current 3.36.4 stable update
CVE-2020-14928 evolution-data-server (eds) through 3.36.3 has a STARTTLS buffering issue that affects SMTP and POP3. When a server sends a "begin TLS" response, eds

Version: 3.36.3-0ubuntu1.1 2020-07-22 14:06:29 UTC

  evolution-data-server (3.36.3-0ubuntu1.1) focal-security; urgency=medium

  * SECURITY UPDATE: STARTTLS response injection
    - debian/patches/CVE-2020-14928-1.patch: truncate cached data in
      src/camel/camel-stream-buffer.c, src/camel/camel-stream-buffer.h,
      src/camel/providers/pop3/camel-pop3-store.c,
      src/camel/providers/pop3/camel-pop3-stream.c,
      src/camel/providers/pop3/camel-pop3-stream.h,
      src/camel/providers/smtp/camel-smtp-transport.c.
    - debian/patches/CVE-2020-14928-2.patch: rename function in
      src/camel/camel-stream-buffer.c, src/camel/camel-stream-buffer.h,
      src/camel/providers/pop3/camel-pop3-store.c,
      src/camel/providers/pop3/camel-pop3-stream.c,
      src/camel/providers/pop3/camel-pop3-stream.h,
      src/camel/providers/smtp/camel-smtp-transport.c.
    - debian/libcamel-1.2-62.symbols: added new symbol.
    - CVE-2020-14928

 -- Marc Deslauriers <email address hidden> Wed, 08 Jul 2020 09:44:28 -0400

Source diff to previous version
CVE-2020-14928 evolution-data-server (eds) through 3.36.3 has a STARTTLS buffering issue that affects SMTP and POP3. When a server sends a "begin TLS" response, eds

Version: 3.36.3-0ubuntu1 2020-07-01 01:06:21 UTC

  evolution-data-server (3.36.3-0ubuntu1) focal; urgency=medium

  * New stable version (lp: #1883116)

 -- Sebastien Bacher <email address hidden> Thu, 11 Jun 2020 23:09:07 +0200

Source diff to previous version
1883116 SRU the current 3.36.3 stable update

Version: 3.36.2-0ubuntu1 2020-05-19 20:07:08 UTC

  evolution-data-server (3.36.2-0ubuntu1) focal; urgency=medium

  * New stable version (lp: #1876125)
  * debian/patches/git_stable_bugfixes.patch:
    - removing, the changes are in the new version

 -- Sebastien Bacher <email address hidden> Thu, 30 Apr 2020 17:07:29 +0200

1876125 SRU the current 3.36.2 stable update



About   -   Send Feedback to @ubuntu_updates