Updated gtkhtml packages that fix a null pointer dereference are now available.
GtkHTML is the HTML rendering widget used by the Evolution mail reader. Versions of GtkHTML prior to 1.1.10 contain a bug when handling HTML messages. Alan Cox discovered that certain malformed messages could cause the Evolution mail component to crash due to a null pointer dereference in the GtkHTML library. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-0541 to this issue. Users of Evolution are advised to upgrade to these erratum packages, which contain GtkHTML version 1.1.10 correcting this issue. Red Hat would like to thank the Ximian security team for investigating and fixing this issue.