Information on source package kdepim

Available versions

ReleaseVersion
jessie4:4.14.1-1+deb8u1
jessie (security)4:4.14.1-1+deb8u2
stretch4:16.04.3-4~deb9u1

Open issues

BugjessiestretchDescription
CVE-2019-10732fixedvulnerable (no DSA, postponed)In KDE KMail 5.2.3, an attacker in possession of S/MIME or PGP encrypt ...
CVE-2017-17689vulnerable (no DSA)vulnerable (no DSA)The S/MIME specification allows a Cipher Block Chaining (CBC) malleabi ...
CVE-2014-8878vulnerable (no DSA)fixedKDE KMail does not encrypt attachments in emails when "automatic encry ...

Open unimportant issues

BugjessiestretchDescription
CVE-2007-1265vulnerablevulnerableKMail 1.9.5 and earlier does not properly use the --status-fd argument ...
CVE-2006-7139vulnerablevulnerableKmail 1.9.1 on KDE 3.5.2, with "Prefer HTML to Plain Text" enabled, al ...

Resolved issues

BugDescription
CVE-2017-9604KDE kmail before 5.5.2 and messagelib before 5.5.2, as distributed in ...
CVE-2012-3413The HTMLQuoteColorer::process function in messageviewer/htmlquotecolor ...
CVE-2005-0404KMail 1.7.1 in KDE 3.3.2 allows remote attackers to spoof email inform ...
CVE-2003-0988Buffer overflow in the VCF file information reader for KDE Personal In ...
CVE-2002-1393Multiple vulnerabilities in KDE 2 and KDE 3.x through 3.0.5 do not quo ...

Security announcements

DSA / DLADescription
DLA-1825-1kdepim - security update
DSA-238kdepim - several vulnerabilities

Search for package or bug name: Reporting problems