Rapid7 Vulnerability & Exploit Database

RHSA-2008:0514: evolution security update

Back to Search

RHSA-2008:0514: evolution security update



Evolution is the integrated collection of e-mail, calendaring, contactmanagement, communications and personal information management (PIM) toolsfor the GNOME desktop environment.A flaw was found in the way Evolution parsed iCalendar timezone attachmentdata. If the Itip Formatter plug-in was disabled and a user opened a mailwith a carefully crafted iCalendar attachment, arbitrary code could beexecuted as the user running Evolution. (CVE-2008-1108)Note: the Itip Formatter plug-in, which allows calendar information(attachments with a MIME type of "text/calendar") to be displayed as partof the e-mail message, is enabled by default.A heap-based buffer overflow flaw was found in the way Evolution parsediCalendar attachments with an overly long "DESCRIPTION" property string. Ifa user responded to a carefully crafted iCalendar attachment in aparticular way, arbitrary code could be executed as the user runningEvolution. (CVE-2008-1109).The particular response required to trigger this vulnerability was asfollows:1. Receive the carefully crafted iCalendar attachment.2. Accept the associated meeting.3. Open the calender the meeting was in.4. Reply to the sender.Red Hat would like to thank Alin Rad Pop of Secunia Research forresponsibly disclosing these issues.All Evolution users should upgrade to these updated packages, which containbackported patches which resolves these issues.


  • redhat-upgrade-evolution
  • redhat-upgrade-evolution-devel
  • redhat-upgrade-evolution-help

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center