Vulnerability Details CVE-2013-4166
The gpg_ctx_add_recipient function in camel/camel-gpg-context.c in GNOME Evolution 3.8.4 and earlier and Evolution Data Server 3.9.5 and earlier does not properly select the GPG key to use for email encryption, which might cause the email to be encrypted with the wrong key and allow remote attackers to obtain sensitive information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.0%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://rhn.redhat.com/errata/RHSA-2013-1540.html
- http://seclists.org/oss-sec/2013/q3/191
- https://bugzilla.redhat.com/show_bug.cgi?id=973728
- https://git.gnome.org/browse/evolution-data-server/commit/?h=gnome-3-8&id=f7059bb37dcce485d36d769142ec9515708d8ae5
- https://git.gnome.org/browse/evolution-data-server/commit/?id=5d8b92c622f6927b253762ff9310479dd3ac627d
- http://rhn.redhat.com/errata/RHSA-2013-1540.html
- http://seclists.org/oss-sec/2013/q3/191
- https://bugzilla.redhat.com/show_bug.cgi?id=973728
- https://git.gnome.org/browse/evolution-data-server/commit/?h=gnome-3-8&id=f7059bb37dcce485d36d769142ec9515708d8ae5
- https://git.gnome.org/browse/evolution-data-server/commit/?id=5d8b92c622f6927b253762ff9310479dd3ac627d
Products affected by CVE-2013-4166
-
cpe:2.3:a:gnome:evolution:-
-
cpe:2.3:a:gnome:evolution:0.0.2
-
cpe:2.3:a:gnome:evolution:0.0.3
-
cpe:2.3:a:gnome:evolution:0.0.4
-
cpe:2.3:a:gnome:evolution:0.0.5
-
cpe:2.3:a:gnome:evolution:0.0.6
-
cpe:2.3:a:gnome:evolution:0.0.7
-
cpe:2.3:a:gnome:evolution:0.0.90
-
cpe:2.3:a:gnome:evolution:0.0.91
-
cpe:2.3:a:gnome:evolution:0.0.92
-
cpe:2.3:a:gnome:evolution:0.0.93
-
cpe:2.3:a:gnome:evolution:0.0.94
-
cpe:2.3:a:gnome:evolution:0.0.94.1
-
cpe:2.3:a:gnome:evolution:0.0.95
-
cpe:2.3:a:gnome:evolution:0.0.96
-
cpe:2.3:a:gnome:evolution:0.0.97
-
cpe:2.3:a:gnome:evolution:0.0.98
-
cpe:2.3:a:gnome:evolution:0.0.99
-
cpe:2.3:a:gnome:evolution:1.0.0
-
cpe:2.3:a:gnome:evolution:1.0.1
-
cpe:2.3:a:gnome:evolution:1.0.2
-
cpe:2.3:a:gnome:evolution:1.0.3
-
cpe:2.3:a:gnome:evolution:1.0.4
-
cpe:2.3:a:gnome:evolution:1.0.8
-
cpe:2.3:a:gnome:evolution:1.1.0
-
cpe:2.3:a:gnome:evolution:1.1.1
-
cpe:2.3:a:gnome:evolution:1.1.2
-
cpe:2.3:a:gnome:evolution:1.1.3
-
cpe:2.3:a:gnome:evolution:1.1.4
-
cpe:2.3:a:gnome:evolution:1.1.4.1
-
cpe:2.3:a:gnome:evolution:1.1.5
-
cpe:2.3:a:gnome:evolution:1.1.6
-
cpe:2.3:a:gnome:evolution:1.10.2
-
cpe:2.3:a:gnome:evolution:1.10.3
-
cpe:2.3:a:gnome:evolution:1.11
-
cpe:2.3:a:gnome:evolution:1.11.3
-
cpe:2.3:a:gnome:evolution:1.11.4
-
cpe:2.3:a:gnome:evolution:1.11.5
-
cpe:2.3:a:gnome:evolution:1.11.90
-
cpe:2.3:a:gnome:evolution:1.11.91
-
cpe:2.3:a:gnome:evolution:1.11.92
-
cpe:2.3:a:gnome:evolution:1.12.0
-
cpe:2.3:a:gnome:evolution:1.12.1
-
cpe:2.3:a:gnome:evolution:1.12.2
-
cpe:2.3:a:gnome:evolution:1.12.3
-
cpe:2.3:a:gnome:evolution:1.2
-
cpe:2.3:a:gnome:evolution:1.2.0
-
cpe:2.3:a:gnome:evolution:1.2.1
-
cpe:2.3:a:gnome:evolution:1.2.2
-
cpe:2.3:a:gnome:evolution:1.2.3
-
cpe:2.3:a:gnome:evolution:1.2.4
-
cpe:2.3:a:gnome:evolution:1.3.1
-
cpe:2.3:a:gnome:evolution:1.3.2
-
cpe:2.3:a:gnome:evolution:1.3.3
-
cpe:2.3:a:gnome:evolution:1.3.3.1
-
cpe:2.3:a:gnome:evolution:1.3.4
-
cpe:2.3:a:gnome:evolution:1.3.5
-
cpe:2.3:a:gnome:evolution:1.3.6
-
cpe:2.3:a:gnome:evolution:1.3.6.1
-
cpe:2.3:a:gnome:evolution:1.3.7
-
cpe:2.3:a:gnome:evolution:1.3.8
-
cpe:2.3:a:gnome:evolution:1.4
-
cpe:2.3:a:gnome:evolution:1.4.0
-
cpe:2.3:a:gnome:evolution:1.4.1
-
cpe:2.3:a:gnome:evolution:1.4.1.1
-
cpe:2.3:a:gnome:evolution:1.4.2
-
cpe:2.3:a:gnome:evolution:1.4.2.1
-
cpe:2.3:a:gnome:evolution:1.4.3
-
cpe:2.3:a:gnome:evolution:1.4.4
-
cpe:2.3:a:gnome:evolution:1.4.5
-
cpe:2.3:a:gnome:evolution:1.4.6
-
cpe:2.3:a:gnome:evolution:1.5
-
cpe:2.3:a:gnome:evolution:1.5.1
-
cpe:2.3:a:gnome:evolution:1.5.3
-
cpe:2.3:a:gnome:evolution:1.5.4
-
cpe:2.3:a:gnome:evolution:1.5.5
-
cpe:2.3:a:gnome:evolution:1.5.9.0
-
cpe:2.3:a:gnome:evolution:1.5.91
-
cpe:2.3:a:gnome:evolution:1.5.92
-
cpe:2.3:a:gnome:evolution:1.6.0
-
cpe:2.3:a:gnome:evolution:1.6.1
-
cpe:2.3:a:gnome:evolution:1.6.2
-
cpe:2.3:a:gnome:evolution:1.6.3
-
cpe:2.3:a:gnome:evolution:1.7.1
-
cpe:2.3:a:gnome:evolution:1.7.2
-
cpe:2.3:a:gnome:evolution:1.7.3
-
cpe:2.3:a:gnome:evolution:1.7.4
-
cpe:2.3:a:gnome:evolution:1.7.90
-
cpe:2.3:a:gnome:evolution:1.7.90.1
-
cpe:2.3:a:gnome:evolution:1.7.91
-
cpe:2.3:a:gnome:evolution:1.7.92
-
cpe:2.3:a:gnome:evolution:1.8.0
-
cpe:2.3:a:gnome:evolution:1.8.1
-
cpe:2.3:a:gnome:evolution:1.8.2
-
cpe:2.3:a:gnome:evolution:1.9.1
-
cpe:2.3:a:gnome:evolution:1.9.3
-
cpe:2.3:a:gnome:evolution:2.0
-
cpe:2.3:a:gnome:evolution:2.0.0
-
cpe:2.3:a:gnome:evolution:2.0.1
-
cpe:2.3:a:gnome:evolution:2.0.2
-
cpe:2.3:a:gnome:evolution:2.1
-
cpe:2.3:a:gnome:evolution:2.10.3
-
cpe:2.3:a:gnome:evolution:2.12
-
cpe:2.3:a:gnome:evolution:2.12.3
-
cpe:2.3:a:gnome:evolution:2.2
-
cpe:2.3:a:gnome:evolution:2.2.1
-
cpe:2.3:a:gnome:evolution:2.21.1
-
cpe:2.3:a:gnome:evolution:2.21.2
-
cpe:2.3:a:gnome:evolution:2.21.3
-
cpe:2.3:a:gnome:evolution:2.21.4
-
cpe:2.3:a:gnome:evolution:2.21.5
-
cpe:2.3:a:gnome:evolution:2.21.90
-
cpe:2.3:a:gnome:evolution:2.21.91
-
cpe:2.3:a:gnome:evolution:2.22.0
-
cpe:2.3:a:gnome:evolution:2.22.1
-
cpe:2.3:a:gnome:evolution:2.22.2
-
cpe:2.3:a:gnome:evolution:2.22.3
-
cpe:2.3:a:gnome:evolution:2.23.1
-
cpe:2.3:a:gnome:evolution:2.23.2
-
cpe:2.3:a:gnome:evolution:2.23.3
-
cpe:2.3:a:gnome:evolution:2.23.4
-
cpe:2.3:a:gnome:evolution:2.23.5
-
cpe:2.3:a:gnome:evolution:2.23.6
-
cpe:2.3:a:gnome:evolution:2.23.90
-
cpe:2.3:a:gnome:evolution:2.23.91
-
cpe:2.3:a:gnome:evolution:2.24
-
cpe:2.3:a:gnome:evolution:2.24.1
-
cpe:2.3:a:gnome:evolution:2.24.3
-
cpe:2.3:a:gnome:evolution:2.24.4
-
cpe:2.3:a:gnome:evolution:2.24.5
-
cpe:2.3:a:gnome:evolution:2.25.1
-
cpe:2.3:a:gnome:evolution:2.25.2
-
cpe:2.3:a:gnome:evolution:2.25.3
-
cpe:2.3:a:gnome:evolution:2.25.4
-
cpe:2.3:a:gnome:evolution:2.25.5
-
cpe:2.3:a:gnome:evolution:2.25.90
-
cpe:2.3:a:gnome:evolution:2.25.92
-
cpe:2.3:a:gnome:evolution:2.26.0
-
cpe:2.3:a:gnome:evolution:2.26.1
-
cpe:2.3:a:gnome:evolution:2.26.2
-
cpe:2.3:a:gnome:evolution:2.26.3
-
cpe:2.3:a:gnome:evolution:2.27.1
-
cpe:2.3:a:gnome:evolution:2.27.2
-
cpe:2.3:a:gnome:evolution:2.27.3
-
cpe:2.3:a:gnome:evolution:2.27.4
-
cpe:2.3:a:gnome:evolution:2.27.5
-
cpe:2.3:a:gnome:evolution:2.27.90
-
cpe:2.3:a:gnome:evolution:2.27.91
-
cpe:2.3:a:gnome:evolution:2.27.92
-
cpe:2.3:a:gnome:evolution:2.28.0
-
cpe:2.3:a:gnome:evolution:2.28.1
-
cpe:2.3:a:gnome:evolution:2.28.2
-
cpe:2.3:a:gnome:evolution:2.28.3
-
cpe:2.3:a:gnome:evolution:2.28.3.1
-
cpe:2.3:a:gnome:evolution:2.29.1
-
cpe:2.3:a:gnome:evolution:2.29.2
-
cpe:2.3:a:gnome:evolution:2.29.3
-
cpe:2.3:a:gnome:evolution:2.29.4
-
cpe:2.3:a:gnome:evolution:2.29.5
-
cpe:2.3:a:gnome:evolution:2.29.6
-
cpe:2.3:a:gnome:evolution:2.29.90
-
cpe:2.3:a:gnome:evolution:2.29.91
-
cpe:2.3:a:gnome:evolution:2.29.92
-
cpe:2.3:a:gnome:evolution:2.3.1
-
cpe:2.3:a:gnome:evolution:2.3.2
-
cpe:2.3:a:gnome:evolution:2.3.3
-
cpe:2.3:a:gnome:evolution:2.3.4
-
cpe:2.3:a:gnome:evolution:2.3.5
-
cpe:2.3:a:gnome:evolution:2.3.6
-
cpe:2.3:a:gnome:evolution:2.3.6.1
-
cpe:2.3:a:gnome:evolution:2.3.7
-
cpe:2.3:a:gnome:evolution:2.30.0
-
cpe:2.3:a:gnome:evolution:2.30.1
-
cpe:2.3:a:gnome:evolution:2.30.2
-
cpe:2.3:a:gnome:evolution:2.30.2.1
-
cpe:2.3:a:gnome:evolution:2.30.3
-
cpe:2.3:a:gnome:evolution:2.31.1
-
cpe:2.3:a:gnome:evolution:2.31.2
-
cpe:2.3:a:gnome:evolution:2.31.3
-
cpe:2.3:a:gnome:evolution:2.31.3.1
-
cpe:2.3:a:gnome:evolution:2.31.4
-
cpe:2.3:a:gnome:evolution:2.31.5
-
cpe:2.3:a:gnome:evolution:2.31.6
-
cpe:2.3:a:gnome:evolution:2.31.90
-
cpe:2.3:a:gnome:evolution:2.31.91
-
cpe:2.3:a:gnome:evolution:2.31.92
-
cpe:2.3:a:gnome:evolution:2.31.92.1
-
cpe:2.3:a:gnome:evolution:2.32.0
-
cpe:2.3:a:gnome:evolution:2.32.1
-
cpe:2.3:a:gnome:evolution:2.32.2
-
cpe:2.3:a:gnome:evolution:2.32.3
-
cpe:2.3:a:gnome:evolution:2.4
-
cpe:2.3:a:gnome:evolution:2.4.2.1
-
cpe:2.3:a:gnome:evolution:2.6
-
cpe:2.3:a:gnome:evolution:2.8.1
-
cpe:2.3:a:gnome:evolution:2.91.0
-
cpe:2.3:a:gnome:evolution:2.91.1
-
cpe:2.3:a:gnome:evolution:2.91.1.1
-
cpe:2.3:a:gnome:evolution:2.91.2
-
cpe:2.3:a:gnome:evolution:2.91.3
-
cpe:2.3:a:gnome:evolution:2.91.4
-
cpe:2.3:a:gnome:evolution:2.91.4.1
-
cpe:2.3:a:gnome:evolution:2.91.5
-
cpe:2.3:a:gnome:evolution:2.91.6
-
cpe:2.3:a:gnome:evolution:2.91.90
-
cpe:2.3:a:gnome:evolution:2.91.91
-
cpe:2.3:a:gnome:evolution:2.91.92
-
cpe:2.3:a:gnome:evolution:3.0.0
-
cpe:2.3:a:gnome:evolution:3.0.1
-
cpe:2.3:a:gnome:evolution:3.0.2
-
cpe:2.3:a:gnome:evolution:3.0.2.1
-
cpe:2.3:a:gnome:evolution:3.0.3
-
cpe:2.3:a:gnome:evolution:3.0.3.1
-
cpe:2.3:a:gnome:evolution:3.1.1
-
cpe:2.3:a:gnome:evolution:3.1.2
-
cpe:2.3:a:gnome:evolution:3.1.3
-
cpe:2.3:a:gnome:evolution:3.1.3.1
-
cpe:2.3:a:gnome:evolution:3.1.4
-
cpe:2.3:a:gnome:evolution:3.1.5
-
cpe:2.3:a:gnome:evolution:3.1.90
-
cpe:2.3:a:gnome:evolution:3.1.91
-
cpe:2.3:a:gnome:evolution:3.1.92
-
cpe:2.3:a:gnome:evolution:3.2.0
-
cpe:2.3:a:gnome:evolution:3.2.1
-
cpe:2.3:a:gnome:evolution:3.2.2
-
cpe:2.3:a:gnome:evolution:3.2.3
-
cpe:2.3:a:gnome:evolution:3.3.1
-
cpe:2.3:a:gnome:evolution:3.3.1.1
-
cpe:2.3:a:gnome:evolution:3.3.2
-
cpe:2.3:a:gnome:evolution:3.3.3
-
cpe:2.3:a:gnome:evolution:3.3.4
-
cpe:2.3:a:gnome:evolution:3.3.5
-
cpe:2.3:a:gnome:evolution:3.3.90
-
cpe:2.3:a:gnome:evolution:3.3.91
-
cpe:2.3:a:gnome:evolution:3.3.92
-
cpe:2.3:a:gnome:evolution:3.4.0
-
cpe:2.3:a:gnome:evolution:3.4.1
-
cpe:2.3:a:gnome:evolution:3.4.2
-
cpe:2.3:a:gnome:evolution:3.4.3
-
cpe:2.3:a:gnome:evolution:3.4.4
-
cpe:2.3:a:gnome:evolution:3.5.1
-
cpe:2.3:a:gnome:evolution:3.5.2
-
cpe:2.3:a:gnome:evolution:3.5.3
-
cpe:2.3:a:gnome:evolution:3.5.3.1
-
cpe:2.3:a:gnome:evolution:3.5.4
-
cpe:2.3:a:gnome:evolution:3.5.5
-
cpe:2.3:a:gnome:evolution:3.5.90
-
cpe:2.3:a:gnome:evolution:3.5.91
-
cpe:2.3:a:gnome:evolution:3.5.92
-
cpe:2.3:a:gnome:evolution:3.6.0
-
cpe:2.3:a:gnome:evolution:3.6.1
-
cpe:2.3:a:gnome:evolution:3.6.2
-
cpe:2.3:a:gnome:evolution:3.6.3
-
cpe:2.3:a:gnome:evolution:3.6.4
-
cpe:2.3:a:gnome:evolution:3.7.1
-
cpe:2.3:a:gnome:evolution:3.7.2
-
cpe:2.3:a:gnome:evolution:3.7.2.1
-
cpe:2.3:a:gnome:evolution:3.7.3
-
cpe:2.3:a:gnome:evolution:3.7.4
-
cpe:2.3:a:gnome:evolution:3.7.5
-
cpe:2.3:a:gnome:evolution:3.7.90
-
cpe:2.3:a:gnome:evolution:3.7.91
-
cpe:2.3:a:gnome:evolution:3.7.92
-
cpe:2.3:a:gnome:evolution:3.8.0
-
cpe:2.3:a:gnome:evolution:3.8.1
-
cpe:2.3:a:gnome:evolution:3.8.2
-
cpe:2.3:a:gnome:evolution:3.8.3
-
cpe:2.3:a:gnome:evolution:3.8.4
-
cpe:2.3:a:gnome:evolution_data_server:3.9.1
-
cpe:2.3:a:gnome:evolution_data_server:3.9.2
-
cpe:2.3:a:gnome:evolution_data_server:3.9.3
-
cpe:2.3:a:gnome:evolution_data_server:3.9.4
-
cpe:2.3:a:gnome:evolution_data_server:3.9.5
-
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
-
cpe:2.3:o:redhat:enterprise_linux_server:6.0
-
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0