VulnerableCode Package Details - pkg:deb/debian/evolution@2.6.3-6etch2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/evolution@2.6.3-6etch2

Essentials
History (10)

purl	pkg:deb/debian/evolution@2.6.3-6etch2

Next non-vulnerable version	3.38.3-1+deb11u2
Latest non-vulnerable version	3.38.3-1+deb11u2
Risk	4.0

Vulnerabilities affecting this package (9)

Vulnerability	Summary	Fixed by
VCID-1kgt-ev1b-vqey Aliases: CVE-2009-1631	The Mailer component in Evolution 2.26.1 and earlier uses world-readable permissions for the .evolution directory, and certain directories and files under .evolution/ related to local mail, which allows local users to obtain sensitive information by reading these files.	2.30.3-5 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-27dq-4ygw-ebhe Aliases: CVE-2006-0040	GNOME Evolution 2.4.2.1 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via a text e-mail with a large number of URLs, possibly due to unknown problems in gtkhtml.	2.22.3.1-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-3ja7-4cwn-cbfr Aliases: CVE-2008-0072	A format string error has been discovered in Evolution, possibly resulting in the execution of arbitrary code.	2.22.3.1-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-67d5-ftaf-8yhj Aliases: CVE-2007-3257	The IMAP client of Evolution contains a vulnerability potentially leading to the execution of arbitrary code.	2.22.3.1-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7kpt-g36p-7ycv Aliases: CVE-2020-11879		3.38.3-1+deb11u2 Affected by 0 other vulnerabilities.
VCID-7pcu-prtr-bqhg Aliases: CVE-2018-15587		3.22.6-1+deb9u2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 3.30.5-1.1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-9du9-wsr8-d7ay Aliases: CVE-2008-1109	Multiple vulnerabilities in Evolution may allow for user-assisted execution of arbitrary code.	2.22.3.1-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-f121-myv6-6ua1 Aliases: CVE-2007-1002	A vulnerability has been discovered in Evolution allowing for the execution of arbitrary code.	2.22.3.1-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-kp8e-yu4x-2ygc Aliases: CVE-2008-1108	Multiple vulnerabilities in Evolution may allow for user-assisted execution of arbitrary code.	2.22.3.1-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-13T10:56:35.082225+00:00	Debian Oval Importer	Affected by	VCID-7kpt-g36p-7ycv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T09:22:11.920452+00:00	Debian Oval Importer	Affected by	VCID-67d5-ftaf-8yhj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T09:21:52.400773+00:00	Debian Oval Importer	Affected by	VCID-3ja7-4cwn-cbfr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T09:17:55.202058+00:00	Debian Oval Importer	Affected by	VCID-27dq-4ygw-ebhe	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T08:45:06.201518+00:00	Debian Oval Importer	Affected by	VCID-7pcu-prtr-bqhg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T08:28:54.411018+00:00	Debian Oval Importer	Affected by	VCID-f121-myv6-6ua1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T08:26:30.360568+00:00	Debian Oval Importer	Affected by	VCID-kp8e-yu4x-2ygc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T07:32:07.965530+00:00	Debian Oval Importer	Affected by	VCID-9du9-wsr8-d7ay	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T04:27:32.634051+00:00	Debian Oval Importer	Affected by	VCID-1kgt-ev1b-vqey	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.6.0
2026-06-13T00:44:37.177220+00:00	Debian Oval Importer	Affected by	VCID-7pcu-prtr-bqhg	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.6.0