Bug 154901

Summary: CAN-2005-0404 kmail email spoofing
Product: Red Hat Enterprise Linux 4 Reporter: Josh Bressers <bressers>
Component: kdepimAssignee: Than Ngo <than>
Status: CLOSED WONTFIX QA Contact: Ben Levenson <benl>
Severity: medium Docs Contact:
Priority: medium    
Version: 4.0Keywords: Security
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: impact=moderate,public=20041230,source=cve,reported=20050413
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2005-05-25 15:24:05 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Josh Bressers 2005-04-14 19:18:34 UTC 
KMail 1.7.1 in KDE 3.3.2 allows remote attackers to spoof email information,
such as whether the email has been digitally signed or encrypted, via HTML
formatted email.

More information is available in the upstream BTS:
http://bugs.kde.org/show_bug.cgi?id=96020
Comment 1 Josh Bressers 2005-04-14 19:19:18 UTC 
This issue should also affect RHEL3.

Than, Any idea if this affects RHEL2.1?
Comment 2 Than Ngo 2005-05-25 15:24:05 UTC 
i close it as wontfix, http://bugs.kde.org/show_bug.cgi?id=96020