1
Candidate: CVE-2017-17688
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17688
7
** DISPUTED ** The OpenPGP specification allows a Cipher Feedback Mode
8
(CFB) malleability-gadget attack that can indirectly lead to plaintext
9
exfiltration, aka EFAIL. NOTE: third parties report that this is a problem
10
in applications that mishandle the Modification Detection Code (MDC)
11
feature or accept an obsolete packet type, not a problem in the OpenPGP
16
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898630
23
upstream_enigmail: needs-triage
24
precise/esm_enigmail: DNE
25
trusty_enigmail: needs-triage
26
xenial_enigmail: needs-triage
27
artful_enigmail: needs-triage
28
bionic_enigmail: needs-triage
29
devel_enigmail: needs-triage