*** This bug is a security vulnerability ***
Public security bug reported:
Binary package hint: evolution
In Evolution 2.22, one can delete certificates without having the proper key to
the certificate storage - even though one is asked for it:
The password dialog for the personal key storage pops up... but it doesn't
matter anymore - the key is deleted before confirmation.
Steps to reproduce:
1. Import personal S/MIME certificate
2. Select certificate and delete it
** Affects: evolution (Ubuntu)
Importance: Undecided
Status: New
** Visibility changed to: Public
--
Evolution allows deleting personal S/MIME certificates without proper password
https://bugs.launchpad.net/bugs/208383
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
