The Mailer component in Evolution 2.26.1 and earlier uses world-readable permissions for the .evolution directory, and certain directories and files under .evolution/ related to local mail, which allows local users to obtain sensitive information by reading these files.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Evolution | Gnome | * | 2.26.1 (including) |
| Evolution | Gnome | 1.0.8 (including) | 1.0.8 (including) |
| Evolution | Gnome | 1.2 (including) | 1.2 (including) |
| Evolution | Gnome | 1.2.1 (including) | 1.2.1 (including) |
| Evolution | Gnome | 1.2.2 (including) | 1.2.2 (including) |
| Evolution | Gnome | 1.2.3 (including) | 1.2.3 (including) |
| Evolution | Gnome | 1.2.4 (including) | 1.2.4 (including) |
| Evolution | Gnome | 1.4 (including) | 1.4 (including) |
| Evolution | Gnome | 1.4.3 (including) | 1.4.3 (including) |
| Evolution | Gnome | 1.4.4 (including) | 1.4.4 (including) |
| Evolution | Gnome | 1.4.5 (including) | 1.4.5 (including) |
| Evolution | Gnome | 1.4.6 (including) | 1.4.6 (including) |
| Evolution | Gnome | 2.0.0 (including) | 2.0.0 (including) |
| Evolution | Gnome | 2.0.1 (including) | 2.0.1 (including) |
| Evolution | Gnome | 2.0.2 (including) | 2.0.2 (including) |
| Evolution | Gnome | 2.4 (including) | 2.4 (including) |
| Evolution | Gnome | 2.6 (including) | 2.6 (including) |
| Evolution | Gnome | 2.12 (including) | 2.12 (including) |
| Evolution | Gnome | 2.24 (including) | 2.24 (including) |
| Evolution | Ubuntu | dapper | * |
| Evolution | Ubuntu | hardy | * |
| Evolution | Ubuntu | intrepid | * |
| Evolution | Ubuntu | jaunty | * |
| Evolution | Ubuntu | karmic | * |
| Evolution | Ubuntu | lucid | * |