Hello Daniel,
On Wed, May 16, 2018 at 01:47:45PM +0200, Carsten Schoenert wrote:
> I guess the "only" problem with enigmail is the recent package version
> isn't available in unstable/testing. The main issue of Efail in Enigmail
> is fixed since Enigmail 2.0.0
>
>
Am 15.05.2018 um 22:31 schrieb David Sanders:
> I think this bug applies to Thunderbird as well as Enigmail and both
> packages need urgent updates.
...
> Could the maintainers of Enigmail take for action updating to the
> already released 2.0.3? And forwarding the bug to Thunderbird for
>
I think this bug applies to Thunderbird as well as Enigmail and both
packages need urgent updates.
The Enigmail part can be corrected by updating to version 2.0.3, but the
user will still be vulnerable until a new version of Thunderbird is
released and pushed out to users. Long term the
Package: enigmail
Severity: grave
Tags: security
Justification: user security hole
Hi Daniel,
in case you haven't already heard about it by now, a vulnerability has
been published against S/MIME and PGP/MIME in various email clients,
including thunderbird (and enigmail).
I'm unsure if
4 matches
Mail list logo
