[kmail2] [Bug 385893] using account creation assistant you get not good security settings
https://bugs.kde.org/show_bug.cgi?id=385893 Philippe ROUBACH changed: What|Removed |Added Version|unspecified |5.11.1 --- Comment #7 from Philippe ROUBACH --- Problem still there. kmail 5.11.1 -- You are receiving this mail because: You are the assignee for the bug.
[kaddressbook] [Bug 398847] Kaddressbook not parsing gmail contacts
https://bugs.kde.org/show_bug.cgi?id=398847 Kishore Gopalakrishnan changed: What|Removed |Added Status|REOPENED|RESOLVED Resolution|--- |FIXED --- Comment #32 from Kishore Gopalakrishnan --- (In reply to Boyd Stephen Smith Jr. from comment #31) > This is still affecting me in kaddresbook 18.08.3 from Debian. > > I have no idea how to convert from the 5.10.3 "fixed version" to the version > used by KDE application releases 18.08.3. From what I could glean, 5.10.3 > was released a year or so before 18.08.3, but the bug persists. Comment #26 says the fix is in 18.12.3. Please ask the Debain maintainer to backport the fix. -- You are receiving this mail because: You are the assignee for the bug.
[kmail2] [Bug 387061] Large messages don't display in the viewer pane (eg. New Tumbleweed snapshot 20171117 released!)
https://bugs.kde.org/show_bug.cgi?id=387061 --- Comment #13 from Sandro Knauß --- (In reply to Rodney Baker from comment #12) > I have no idea where or how to do that. I tried cloning the kmail source but > I can find neither messagelib nor any instance (using grep -r) of a call to > QWebEngineView::setHtml within kmail. My programming experience is limited > to Visual Basic and Ruby, so this might be a step too far at the moment. kdepim is about 50 repos. The repo you search is https://cgit.kde.org/messagelib.git. And the file: messageviewer/src/htmlwriter/webengineparthtmlwriter.cpp:l66 To build up a development environment look at: https://community.kde.org/KDE_PIM/Docker -- You are receiving this mail because: You are the assignee for the bug.
[kmail2] [Bug 404698] Decryption Oracle based on replying to PGP or S/MIME encrypted emails
https://bugs.kde.org/show_bug.cgi?id=404698 Sandro Knauß changed: What|Removed |Added Version Fixed In||5.11.2 Latest Commit|https://commits.kde.org/mes |https://commits.kde.org/mes |sagelib/d397aa46e809203c94e |sagelib/a58286aec8f300d78c5 |31891caac57affac746d9 |70726924baa91d9a22771 --- Comment #19 from Sandro Knauß --- Git commit a58286aec8f300d78c570726924baa91d9a22771 by Sandro Knauß. Committed on 12/05/2019 at 21:48. Pushed by knauss into branch 'Applications/19.04'. Merge branch 'CVE-2019-10732' into Applications/19.04 Fixes the CVE-2019-10732, with additional tests, to make sure, we fixed the CVE completely. FIXED-IN: 5.11.2 CCMAIL: secur...@kde.org https://commits.kde.org/messagelib/a58286aec8f300d78c570726924baa91d9a22771 -- You are receiving this mail because: You are the assignee for the bug.
[kmail2] [Bug 404698] Decryption Oracle based on replying to PGP or S/MIME encrypted emails
https://bugs.kde.org/show_bug.cgi?id=404698 Sandro Knauß changed: What|Removed |Added Latest Commit|https://commits.kde.org/mes |https://commits.kde.org/mes |sagelib/8f9b85b664be0987014 |sagelib/ac360b3a57eacbf0542 |c5d2485e706ab5a198e1b |ed0800e6054db76f01398 --- Comment #21 from Sandro Knauß --- Git commit ac360b3a57eacbf0542ed0800e6054db76f01398 by Sandro Knauß. Committed on 12/05/2019 at 20:37. Pushed by knauss into branch 'Applications/19.04'. Decryption Oracle based on forwarding PGP or S/MIME mails (CVE-2019-10732) Summary: Add test coverage for mail forwarding. Test Plan: all tests passes forward (text/html): [x] PGP Mime text [x] PGP Mime html [x] S/MIME [x] PGP inline Reviewers: #kde_pim, vkrause, aacid, dfaure Subscribers: kde-pim, security-team Tags: #kde_pim Differential Revision: https://phabricator.kde.org/D20847 A +72 -0templateparser/autotests/data/404698-gpg-attachments.mbox A +66 -0 templateparser/autotests/data/404698-gpg-attachments.mbox.forwarded.mbox A +1-0 templateparser/autotests/data/404698-gpg-attachments.mbox.html.reply A +5-0 templateparser/autotests/data/404698-gpg-attachments.mbox.plain.reply A +83 -0 templateparser/autotests/data/html-attachment1.mbox.forwarded.mbox A +28 -0 templateparser/autotests/data/html-attachment2.mbox.forwarded.mbox M +162 -0templateparser/autotests/templateparserjobtest.cpp M +9-0templateparser/autotests/templateparserjobtest.h https://commits.kde.org/messagelib/ac360b3a57eacbf0542ed0800e6054db76f01398 -- You are receiving this mail because: You are the assignee for the bug.
[kmail2] [Bug 404698] Decryption Oracle based on replying to PGP or S/MIME encrypted emails
https://bugs.kde.org/show_bug.cgi?id=404698 --- Comment #18 from Sandro Knauß --- Created attachment 120026 --> https://bugs.kde.org/attachment.cgi?id=120026=edit html mail with two images embeded. There is one question, how we should handle forwards with embedded images. We have a testcase with two images embedded (see attachment), that are added to the forwarded message. IMO this is not a security issue, as we do not parse those two images (aka do not encrypt them) and just copy them like they were sent over the wire. So we can't leak private information. -- You are receiving this mail because: You are the assignee for the bug.
[kmail2] [Bug 404698] Decryption Oracle based on replying to PGP or S/MIME encrypted emails
https://bugs.kde.org/show_bug.cgi?id=404698 Sandro Knauß changed: What|Removed |Added Resolution|--- |FIXED Status|CONFIRMED |RESOLVED Latest Commit||https://commits.kde.org/mes ||sagelib/d397aa46e809203c94e ||31891caac57affac746d9 --- Comment #17 from Sandro Knauß --- Git commit d397aa46e809203c94e31891caac57affac746d9 by Sandro Knauß. Committed on 12/05/2019 at 20:34. Pushed by knauss into branch 'Applications/19.04'. Test mails for Decryption Oracle based on replying to PGP or S/MIME. Summary: In order to make sure we never add a Decryption Oracle add test mails to TemplateParser. Reviewers: #kde_pim, aacid, dfaure Subscribers: kde-pim Tags: #kde_pim Differential Revision: https://phabricator.kde.org/D20757 A +120 -0templateparser/autotests/data/404698-gpg.mbox A +51 -0templateparser/autotests/data/404698-gpg.mbox.plain.reply A +88 -0templateparser/autotests/data/404698-smime.mbox A +51 -0templateparser/autotests/data/404698-smime.mbox.plain.reply https://commits.kde.org/messagelib/d397aa46e809203c94e31891caac57affac746d9 -- You are receiving this mail because: You are the assignee for the bug.
[kmail2] [Bug 407465] KMail 5.9.3 doesn't seem to set active sieve script
https://bugs.kde.org/show_bug.cgi?id=407465 Laurent Montel changed: What|Removed |Added CC||mon...@kde.org Status|REPORTED|RESOLVED Resolution|--- |FIXED --- Comment #1 from Laurent Montel --- Fixed in 5.10.x -- You are receiving this mail because: You are the assignee for the bug.
[kmail2] [Bug 407465] KMail 5.9.3 doesn't seem to set active sieve script
https://bugs.kde.org/show_bug.cgi?id=407465 Hazel Victoria Campbell changed: What|Removed |Added CC||w...@wza.us -- You are receiving this mail because: You are the assignee for the bug.
[kmail2] [Bug 407465] New: KMail 5.9.3 doesn't seem to set active sieve script
https://bugs.kde.org/show_bug.cgi?id=407465 Bug ID: 407465 Summary: KMail 5.9.3 doesn't seem to set active sieve script Product: kmail2 Version: 5.9.3 Platform: Debian testing OS: Linux Status: REPORTED Severity: normal Priority: NOR Component: sieve Assignee: kdepim-bugs@kde.org Reporter: w...@wza.us Target Milestone: --- SUMMARY KMail's sieve script editor seems fine, but it doesn't ever seem to activate the sieve scripts at all. It does put the active scripts in the USER script, which is great, but it never sends the managesieve SETACTIVE command. I am using Dovecot 2.3.4.1. In the default dovecot configuration the active sieve script is stored as a symlink .dovecot.sieve -> sieve/USER.sieve, otherwise NO sieve scripts are active. It is possible to work around this by connecting to the managesieve port, logging in, and doing SETACTIVE "USER" yourself, so it is not a problem with Dovecot. STEPS TO REPRODUCE 1. Add an imap account in KMail with sieve enabled 2. Add a sieve script 3. Try to enable script OBSERVED RESULT No active sieve script: KMail lists all scripts as disabled and the symlink that dovecot creates to indicate the active sieve script is missing. EXPECTED RESULT Kmail should list scripts as enabled and the symlink that dovecot creates to indicate the active sieve script should be present. SOFTWARE/OS VERSIONS Linux/KDE Plasma: Debian Buster (available in About System) KDE Plasma Version: 5.14.5 KDE Frameworks Version: 5.54.0 Qt Version: 5.11.3 Managsieve protocol transcript (only the data KMail sent) (as you can see KMail sends no SETACTIVE command): PUTSCRIPT "newsletters" {159+} require "fileinto"; #: sa...@dashvapes.com if allof (header :contains "From" "sa...@dashvapes.com") { fileinto "Newsletters"; stop; } PUTSCRIPT "USER" {270+} # USER Management Script # # This script includes the various active sieve scripts # it is AUTOMATICALLY GENERATED. DO NOT EDIT MANUALLY! # # For more information, see http://wiki.kolab.org/KEP:14#USER # require ["include"]; include :personal "newsletters"; LISTSCRIPTS PUTSCRIPT "USER" {270+} # USER Management Script # # This script includes the various active sieve scripts # it is AUTOMATICALLY GENERATED. DO NOT EDIT MANUALLY! # # For more information, see http://wiki.kolab.org/KEP:14#USER # require ["include"]; include :personal "newsletters"; LISTSCRIPTS -- You are receiving this mail because: You are the assignee for the bug.
[kmail2] [Bug 407209] "grammar check(Language Tool)" does not work
https://bugs.kde.org/show_bug.cgi?id=407209 Philippe ROUBACH changed: What|Removed |Added Ever confirmed|0 |1 Resolution|FIXED |--- Status|RESOLVED|REOPENED Version|5.11.0 |5.11.1 --- Comment #2 from Philippe ROUBACH --- Grammar checking with LT is now well recorded in kmail checking and with "french" language. But grammar checking with LT is not recorded in kmail composer (new message) and thus don't work. -- You are receiving this mail because: You are the assignee for the bug.
[kaddressbook] [Bug 398847] Kaddressbook not parsing gmail contacts
https://bugs.kde.org/show_bug.cgi?id=398847 Boyd Stephen Smith Jr. changed: What|Removed |Added Status|RESOLVED|REOPENED CC||Boyd.Stephen.Smith.Jr@GMail ||.com Resolution|FIXED |--- --- Comment #31 from Boyd Stephen Smith Jr. --- This is still affecting me in kaddresbook 18.08.3 from Debian. I have no idea how to convert from the 5.10.3 "fixed version" to the version used by KDE application releases 18.08.3. From what I could glean, 5.10.3 was released a year or so before 18.08.3, but the bug persists. -- You are receiving this mail because: You are the assignee for the bug.