PublicDate: 2006-02-02 11:02:00 UTC
Candidate: CVE-2006-0528
References:
 https://ubuntu.com/security/notices/USN-265-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0528
Description:
 The cairo library (libcairo), as used in GNOME Evolution and possibly other
 products, allows remote attackers to cause a denial of service (persistent
 client crash) via an attached text file that contains "Content-Disposition:
 inline" in the header, and a very long line in the body, which causes the
 client to repeatedly crash until the e-mail message is manually removed,
 possibly due to a buffer overflow, as demonstrated using an XML attachment.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_evolution: not-affected
edgy_evolution: not-affected
feisty_evolution: not-affected
devel_evolution: not-affected
dapper_libcairo: released (1.0.4-0ubuntu1)
edgy_libcairo: not-affected
feisty_libcairo: not-affected
upstream_evolution: needs-triage
upstream_libcairo: needs-triage