Register | Log in

enigmail

GPG support for Thunderbird and Debian Icedove

Choose email to subscribe with

general

source: enigmail (main)
version: 2:2.1.3+ds1-4
maintainer: Debian Mozilla Extension Maintainers (archive) (DMD)
uploaders: Alexander Sack [DMD] – Daniel Kahn Gillmor [DMD] – Willi Mann [DMD]
arch: all
std-ver: 4.4.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2:1.9.9-1~deb8u1
o-o-sec: 2:1.9.9-1~deb8u1
oldstable: 2:2.0.8-5~deb9u1
old-sec: 2:1.9.9-1~deb9u1
stable: 2:2.0.12+ds1-1~deb10u1
stable-sec: 2:2.1.3+ds1-4~deb10u2
testing: 2:2.0.12+ds1-1
unstable: 2:2.1.3+ds1-4

versioned links

2:1.9.9-1~deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:1.9.9-1~deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:2.0.8-5~deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:2.0.12+ds1-1~deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:2.0.12+ds1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:2.1.3+ds1-4~deb10u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2:2.1.3+ds1-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

enigmail (43 bugs: 0, 31, 12, 0)

action needed

Debci reports failed tests high

unstable: pass (log)
The tests ran in 0:02:51
Last run: 2019-12-11 14:59:18 UTC
Previous status: pass

testing: fail (log)
The tests ran in 5:35:10
Last run: 2019-12-07 20:38:32 UTC
Previous status: fail

stable: fail (log)
The tests ran in 0:02:47
Last run: 2019-08-21 11:31:53 UTC
Previous status: fail

Created: 2019-09-01 Last update: 2019-12-13 21:04

Marked for autoremoval on 18 December: #933832 high

Version 2:2.0.12+ds1-1 of enigmail is marked for autoremoval from testing on Wed 18 Dec 2019. It is affected by #933832. The removal of enigmail will also cause the removal of (transitive) reverse dependency: debian-parl. You should try to prevent the removal by fixing these RC bugs.

Created: 2019-11-03 Last update: 2019-12-13 21:00

1 security issue in bullseye high

There is 1 open security issue in bullseye.

1 important issue:

CVE-2019-14664: In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended receiver. If the receiver replies to this (benign looking) email, he unknowingly leaks the plaintext of the encrypted message part(s) back to the attacker. This attack variant bypasses protection mechanisms implemented after the "EFAIL" attacks.

Please fix it.

Created: 2019-08-06 Last update: 2019-11-25 02:59

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2019-14664: In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended receiver. If the receiver replies to this (benign looking) email, he unknowingly leaks the plaintext of the encrypted message part(s) back to the attacker. This attack variant bypasses protection mechanisms implemented after the "EFAIL" attacks.

Please fix it.

Created: 2019-08-06 Last update: 2019-11-25 02:59

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 2-day delay is over. Check why.

Created: 2019-11-12 Last update: 2019-12-13 20:45

1 ignored security issue in buster low

There is 1 open security issue in buster.

1 issue skipped by the security teams:

CVE-2019-14664: In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended receiver. If the receiver replies to this (benign looking) email, he unknowingly leaks the plaintext of the encrypted message part(s) back to the attacker. This attack variant bypasses protection mechanisms implemented after the "EFAIL" attacks.

Please fix it.

Created: 2019-05-22 Last update: 2019-11-25 02:59

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2019-14664: In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended receiver. If the receiver replies to this (benign looking) email, he unknowingly leaks the plaintext of the encrypted message part(s) back to the attacker. This attack variant bypasses protection mechanisms implemented after the "EFAIL" attacks.
CVE-2019-12269: Enigmail before 2.0.11 allows PGP signature spoofing: for an inline PGP message, an attacker can cause the product to display a "correctly signed" message indication, but display different unauthenticated text.

Please fix them.

Created: 2019-05-22 Last update: 2019-11-25 02:59

testing migrations

excuses:
- Migration status: Blocked. Can't migrate due to a non-migratable dependency. Check status below.
- Blocked by: thunderbird
- Migration status for enigmail (2:2.0.12+ds1-1 to 2:2.1.3+ds1-4): BLOCKED: Cannot migrate due to another item, which is blocked (please check which dependencies are stuck)
- Issues preventing migration:
- Invalidated by dependency
- Depends: enigmail thunderbird (not considered)
- Additional info:
- Updating enigmail fixes old bugs: #933832
- Piuparts tested OK - https://piuparts.debian.org/sid/source/e/enigmail.html
- Required age reduced by 3 days because of autopkgtest
- 34 days old (needed 2 days)
- Not considered

news

[2019-11-24] Accepted enigmail 2:2.1.3+ds1-4~deb10u2 (source) into stable->embargoed, stable (Daniel Kahn Gillmor)
[2019-11-09] Accepted enigmail 2:2.1.3+ds1-4 (source) into unstable (Daniel Kahn Gillmor)
[2019-11-09] Accepted enigmail 2:2.1.3+ds1-3+exp2 (source) into experimental (Daniel Kahn Gillmor)
[2019-11-09] Accepted enigmail 2:2.1.3+ds1-3+exp1 (source) into experimental (Daniel Kahn Gillmor)
[2019-11-09] Accepted enigmail 2:2.1.3+ds1-3 (source) into unstable (Daniel Kahn Gillmor)
[2019-11-08] Accepted enigmail 2:2.1.3+ds1-2 (source) into unstable (Daniel Kahn Gillmor)
[2019-11-06] Accepted enigmail 2:2.1.3+ds1-1 (source) into unstable (Daniel Kahn Gillmor)
[2019-08-22] Accepted enigmail 2:2.0.12+ds1-1~deb10u1 (source) into proposed-updates->stable-new, proposed-updates (Daniel Kahn Gillmor)
[2019-07-14] enigmail 2:2.0.12+ds1-1 MIGRATED to testing (Debian testing watch)
[2019-07-12] Accepted enigmail 2:2.0.12+ds1-1 (source) into unstable (Daniel Kahn Gillmor)
[2019-07-09] enigmail 2:2.0.11+ds1-2 MIGRATED to testing (Debian testing watch)
[2019-05-30] Accepted enigmail 2:2.0.11+ds1-2 (source) into unstable (Daniel Kahn Gillmor)
[2019-05-24] Accepted enigmail 2:2.0.11+ds1-1 (source) into unstable (Daniel Kahn Gillmor)
[2019-04-18] enigmail 2:2.0.10+ds1-1 MIGRATED to testing (Debian testing watch)
[2019-04-16] Accepted enigmail 2:2.0.10+ds1-1 (source) into unstable (Daniel Kahn Gillmor)
[2018-12-19] enigmail 2:2.0.9+ds1-2 MIGRATED to testing (Debian testing watch)
[2018-12-16] Accepted enigmail 2:2.0.9+ds1-2 (source) into unstable (Daniel Kahn Gillmor)
[2018-12-16] enigmail 2:2.0.9+ds1-1 MIGRATED to testing (Debian testing watch)
[2018-12-13] Accepted enigmail 2:2.0.9+ds1-1 (source) into unstable (Daniel Kahn Gillmor)
[2018-11-03] Accepted enigmail 2:2.0.8-5~deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Daniel Kahn Gillmor)
[2018-10-08] enigmail 2:2.0.8-5 MIGRATED to testing (Debian testing watch)
[2018-10-05] Accepted enigmail 2:2.0.8-5 (source) into unstable (Daniel Kahn Gillmor)
[2018-10-05] enigmail 2:2.0.8-4 MIGRATED to testing (Debian testing watch)
[2018-10-02] Accepted enigmail 2:2.0.8-4 (source) into unstable (Daniel Kahn Gillmor)
[2018-10-02] Accepted enigmail 2:2.0.8-3 (source) into unstable (Daniel Kahn Gillmor)
[2018-09-30] Accepted enigmail 2:2.0.8-2 (source) into unstable (Daniel Kahn Gillmor)
[2018-09-19] enigmail 2:2.0.8-1 MIGRATED to testing (Debian testing watch)
[2018-09-03] Accepted enigmail 2:2.0.8-1 (source) into unstable (Willi Mann)
[2018-07-16] enigmail 2:2.0.7+ds1-1 MIGRATED to testing (Debian testing watch)
[2018-07-10] Accepted enigmail 2:2.0.7+ds1-1 (source) into unstable (Daniel Kahn Gillmor)

1
2

bugs [bug history graph]

all: 40 43
RC: 0
I&N: 29 31
M&W: 11 12
F&P: 0
patch: 0

links

homepage
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2:2.1.3+ds1-4
13 bugs

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing