SB2025090333 - Ubuntu update for kdepim

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2025090333

SB2025090333 - Ubuntu update for kdepim

Published: September 3, 2025

Security Bulletin ID SB2025090333
Severity
Medium
Patch available
YES
Number of vulnerabilities 4
Exploitation vector Remote access
Highest impact Data manipulation

Breakdown by Severity

Medium 25% Low 75%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 4 secuirty vulnerabilities.


1) Information disclosure (CVE-ID: CVE-2017-17689)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The vulnerability exists due to improper access controls. A remote attacker with access to a target user's S/MIME encrypted email message can exploit a property of Cipher Feedback Mode (CFB) by modifying known plaintext blocks (such as MIME headers). When the target user decrypts and views the modified email message, the target user's mail client will parse the resulting modified HTML content and disclose the original plaintext to a remote URL.

This exploit is the "CFB gadget" attack method of the vulnerability referred to as "EFAIL".


2) Input validation error (CVE-ID: CVE-2019-10732)

The vulnerability allows a remote non-authenticated attacker to manipulate data.

In KDE KMail 5.2.3, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended receiver. If the receiver replies to this (benign looking) email, they unknowingly leak the plaintext of the encrypted message part(s) back to the attacker.


3) Input validation error (CVE-ID: CVE-2020-11880)

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

An issue was discovered in KDE KMail before 19.12.3. By using the proprietary (non-RFC6068) "mailto?attach=..." parameter, a website (or other source of mailto links) can make KMail attach local files to a composed email message without showing a warning to the user, as demonstrated by an attach=.bash_history value.


4) Cleartext transmission of sensitive information (CVE-ID: CVE-2024-50624)

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to software uses insecure communication channel to transmit sensitive information in ispdbservice.cpp, e.g. HTTP protocol is used for a URL such as http://autoconfig.example.com or http://example.com/.well-known/autoconfig for retrieving the configuration. A remote attacker with ability to intercept network traffic can gain access to sensitive data.


Remediation

Install update from vendor's website.

References