Security fix for CVE-2019-14664, CVE-2019-12269 and compatibility with Thunderbird 68

How to install

sudo dnf upgrade --advisory=FEDORA-2019-951d5dcaf9

This update has been submitted for testing by fschwarz.

5 months ago

This update's test gating status has been changed to 'waiting'.

5 months ago

This update's test gating status has been changed to 'ignored'.

5 months ago

fschwarz edited this update.

5 months ago

This update has been pushed to testing.

5 months ago

fschwarz edited this update.

New build(s):

  • thunderbird-enigmail-2.1.3-4.fc31

Removed build(s):

  • thunderbird-enigmail-2.1.3-3.fc31

Karma has been reset.

5 months ago

This update has been submitted for testing by fschwarz.

5 months ago

This update has been pushed to testing.

5 months ago
User Icon robatino commented & provided feedback 5 months ago

I have not used signed/encrypted email in a long time, so am not willing to test this, but can confirm that this update makes Enigmail available again in the latest version of Thunderbird.

BZ#1752435 enigmail version 2.1 needs to be packaged to work with thunderbird 68

This update can be pushed to stable now if the maintainer wishes

5 months ago

This update has been submitted for stable by fschwarz.

5 months ago

This update has been pushed to stable.

5 months ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Dates
submitted
5 months ago
in testing
5 months ago
in stable
5 months ago
modified
5 months ago
BZ#1660478 thunderbird-enigmail: HTTP authentication dialog may be triggered [fedora-all]
0
0
BZ#1712723 CVE-2019-12269 thunderbird-enigmail: signature spoofing in inline PGP message [fedora-all]
0
0
BZ#1749211 CVE-2019-14664 thunderbird-enigmail: information leak in response to encrypted mail [fedora-all]
0
0
BZ#1752435 enigmail version 2.1 needs to be packaged to work with thunderbird 68
0
1

Automated Test Results