suse · CVE-2018-15587

Quick triage

Priority: medium Published: 2021-05-30 14:15:57 UTC Updated: 2025-05-17 23:30:00 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2018-15587 severity moderate: SUSE including 87 source package names (atk-2.28.1-2.el7, atk-devel-2.28.1-2.el7, …), 132 product×package rows across 22 product lines (SUSE Liberty Linux 7, SUSE Liberty Linux 7 LTSS, … (22 product lines)): Fixed 125, Known Not Affected 7.

Description:

GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as an attachment.

cvelogic Threat Intelligence