CVE-2020-14928

evolution-data-server (eds) through 3.36.3 has a STARTTLS buffering issue that affects SMTP and POP3. When a server sends a "begin TLS" response, eds reads additional data and evaluates it in a TLS context, aka "response injection."
Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
Affected Products (NVD)
VendorProductVersion
gnomeevolution-data-server
𝑥
≤ 3.36.3
debiandebian_linux
9.0
debiandebian_linux
10.0
canonicalubuntu_linux
16.04
canonicalubuntu_linux
18.04
canonicalubuntu_linux
20.04
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
evolution-data-server
bookworm
3.46.4-2
fixed
bullseye
3.38.3-1+deb11u2
fixed
sid
3.54.1-1
fixed
trixie
3.54.1-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
evolution-data-server
bionic
Fixed 3.28.5-0ubuntu0.18.04.3
released
eoan
ignored
focal
Fixed 3.36.3-0ubuntu1.1
released
trusty
dne
xenial
Fixed 3.18.5-1ubuntu1.3
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
evolution-data-server
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
evolution-data-server-devel
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
evolution-data-server-lang
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
evolution-ews
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
evolution-ews-lang
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
libcamel-1_2-62
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP5
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP6
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP7
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP5
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP6
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP7
3.34.4-3.3.1
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.34.4-3.3.1
fixed
suse enterprise server 15 SP5
3.34.4-3.3.1
fixed
suse enterprise server 15 SP6
3.34.4-3.3.1
fixed
suse enterprise server 15 SP7
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP5
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP6
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP7
3.34.4-3.3.1
fixed
libcamel-1_2-63
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
libebackend-1_2-10
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
libebook-1_2-20
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
libebook-contacts-1_2-3
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
libecal-2_0-1
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
libedata-book-1_2-26
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
libedata-cal-2_0-1
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
libedataserver-1_2-24
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP5
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP6
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP7
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP5
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP6
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP7
3.34.4-3.3.1
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.34.4-3.3.1
fixed
suse enterprise server 15 SP5
3.34.4-3.3.1
fixed
suse enterprise server 15 SP6
3.34.4-3.3.1
fixed
suse enterprise server 15 SP7
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP5
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP6
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP7
3.34.4-3.3.1
fixed
libedataserver-1_2-26
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
libedataserverui-1_2-2
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
libedataserverui-1_2-3
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
typelib-1_0-Camel-1_2
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
typelib-1_0-EBook-1_2
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
typelib-1_0-EBookContacts-1_2
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
typelib-1_0-ECal-2_0
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
typelib-1_0-EDataServer-1_2
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
typelib-1_0-EDataServerUI-1_2
suse enterprise desktop 15 SP2
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP3
3.34.4-3.3.1
fixed
suse enterprise desktop 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise sap 15 SP2
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP3
3.34.4-3.3.1
fixed
suse enterprise sap 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise server 15 SP2
3.34.4-3.3.1
fixed
suse enterprise server 15 SP3
3.34.4-3.3.1
fixed
suse enterprise server 15 SP4
3.42.4-150400.1.7
fixed
suse enterprise workstation 15 SP2
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP3
3.34.4-3.3.1
fixed
suse enterprise workstation 15 SP4
3.42.4-150400.1.7
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
bogofilter
RHEL 8
0:1.2.5-2.el8
fixed
evolution
RHEL 8
0:3.28.5-14.el8
fixed
evolution-bogofilter
RHEL 8
0:3.28.5-14.el8
fixed
evolution-data-server
RHEL 8
0:3.28.5-14.el8
fixed
evolution-data-server-devel
RHEL 8
0:3.28.5-14.el8
fixed
evolution-data-server-doc
RHEL 8
0:3.28.5-14.el8
fixed
evolution-data-server-langpacks
RHEL 8
0:3.28.5-14.el8
fixed
evolution-data-server-perl
RHEL 8
0:3.28.5-14.el8
fixed
evolution-data-server-tests
RHEL 8
0:3.28.5-14.el8
fixed
evolution-devel
RHEL 8
0:3.28.5-14.el8
fixed
evolution-help
RHEL 8
0:3.28.5-14.el8
fixed
evolution-langpacks
RHEL 8
0:3.28.5-14.el8
fixed
evolution-mapi
RHEL 8
0:3.28.3-3.el8
fixed
evolution-mapi-langpacks
RHEL 8
0:3.28.3-3.el8
fixed
evolution-pst
RHEL 8
0:3.28.5-14.el8
fixed
evolution-spamassassin
RHEL 8
0:3.28.5-14.el8
fixed
openchange
RHEL 8
0:2.3-26.el8
fixed
Common Weakness Enumeration
References
https://bugzilla.suse.com/show_bug.cgi?id=1173910
https://gitlab.gnome.org/GNOME//evolution-data-server/commit/ba82be72cfd427b5d72ff21f929b3a6d8529c4df
https://gitlab.gnome.org/GNOME/evolution-data-server/-/commit/f404f33fb01b23903c2bbb16791c7907e457fbac
https://gitlab.gnome.org/GNOME/evolution-data-server/-/issues/226
https://lists.debian.org/debian-lts-announce/2020/07/msg00012.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QMBEZWA22EAYAZQWUX4KPEBER726KSIG/
https://security-tracker.debian.org/tracker/DLA-2281-1
https://security-tracker.debian.org/tracker/DSA-4725-1
https://usn.ubuntu.com/4429-1/
https://www.debian.org/security/2020/dsa-4725
https://bugzilla.suse.com/show_bug.cgi?id=1173910
https://gitlab.gnome.org/GNOME//evolution-data-server/commit/ba82be72cfd427b5d72ff21f929b3a6d8529c4df
https://gitlab.gnome.org/GNOME/evolution-data-server/-/commit/f404f33fb01b23903c2bbb16791c7907e457fbac
https://gitlab.gnome.org/GNOME/evolution-data-server/-/issues/226
https://lists.debian.org/debian-lts-announce/2020/07/msg00012.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QMBEZWA22EAYAZQWUX4KPEBER726KSIG/
https://security-tracker.debian.org/tracker/DLA-2281-1
https://security-tracker.debian.org/tracker/DSA-4725-1
https://usn.ubuntu.com/4429-1/
https://www.debian.org/security/2020/dsa-4725