View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2018-15587 severity moderate: SUSE including 87 source package names (atk-2.28.1-2.el7, atk-devel-2.28.1-2.el7, …), 132 product×package rows across 22 product lines (SUSE Liberty Linux 7, SUSE Liberty Linux 7 LTSS, … (22 product lines)): Fixed 125, Known Not Affected 7.
GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid signature from the entity to be impersonated as an attachment.