{"affected":[{"ecosystem_specific":{"binaries":[{"enigmail":"2.0.8-3.10.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 15","name":"enigmail","purl":"pkg:rpm/suse/enigmail&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.0.8-3.10.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for enigmail to 2.0.8 fixes the following issues:\n\nThe enigmail 2.0.8 release addresses a security issue and solves a few regression bugs.\n\n* A security issue has been fixed that allows an attacker to prepare\n  a plain, unauthenticated HTML message in a way that it looks like\n  it's signed and/or encrypted (boo#1104036)\n","id":"SUSE-SU-2018:2641-1","modified":"2018-09-06T17:41:23Z","published":"2018-09-06T17:41:23Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2018/suse-su-20182641-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1104036"}],"related":[],"summary":"Security update for enigmail","upstream":[]}