UBUNTU-CVE-2019-10732
- Source
- https://ubuntu.com/security/CVE-2019-10732
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2019/UBUNTU-CVE-2019-10732.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2019-10732
- Upstream
- Downstream
- Related
- Published
- 2019-04-07T15:29:00Z
- Modified
- 2025-09-08T16:45:23Z
- Severity
-
- 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N CVSS Calculator
- Ubuntu - medium
- Summary
- [none]
- Details
-
In KDE KMail 5.2.3, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended receiver. If the receiver replies to this (benign looking) email, they unknowingly leak the plaintext of the encrypted message part(s) back to the attacker.
- References
Affected packages
Ubuntu:Pro:14.04:LTS / kdepim
Package
- Name
- kdepim
- Purl
- pkg:deb/ubuntu/kdepim@4:4.13.3-0ubuntu0.2+esm1?arch=source&distro=esm-infra-legacy/trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4:4.13.3-0ubuntu0.2+esm1
Affected versions
4:4.*
4:4.11.2-0ubuntu1
4:4.11.2-0ubuntu2
4:4.11.80-0ubuntu1
4:4.11.95-0ubuntu1
4:4.11.97-0ubuntu1
4:4.12.0-0ubuntu1
4:4.12.1-0ubuntu1
4:4.12.2-0ubuntu1
4:4.12.3-0ubuntu1
4:4.12.90-0ubuntu1
4:4.12.90-0ubuntu2
4:4.12.95-0ubuntu1
4:4.12.97-0ubuntu1
4:4.13.0-0ubuntu1
4:4.13.1-0ubuntu0.1
4:4.13.2-0ubuntu0.1
4:4.13.3-0ubuntu0.1
4:4.13.3-0ubuntu0.2
Ecosystem specific
{
"availability": "Available with Ubuntu Pro with Legacy support add-on: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "akonadiconsole",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "akregator",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "blogilo",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kaddressbook",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kaddressbook-mobile",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kalarm",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kde-config-pimactivity",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kdepim",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kdepim-dev",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kdepim-kresources",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kdepim-mobile",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kdepim-mobileui-data",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kdepim-themeeditors",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kjots",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kleopatra",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kmail",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kmail-mobile",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "knode",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "knotes",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "konsolekalendar",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "kontact",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "korganizer",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "korganizer-mobile",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "ktimetracker",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "ktnef",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libcalendarsupport4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libcomposereditorng4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libeventviews4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libgrammar4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libincidenceeditorsng4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libkdepim4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libkdepimdbusinterfaces4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libkdepimmobileui4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libkdgantt2-0",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libkleo4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libkmanagesieve4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libkpgp4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libksieve4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libksieveui4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libmailcommon4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libmailimporter4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libmessagecomposer4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libmessagecore4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libmessagelist4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libmessageviewer4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libnoteshared4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libpimactivity4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libpimcommon4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libsendlater4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "libtemplateparser4",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "notes-mobile",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "storageservicemanager",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
},
{
"binary_name": "tasks-mobile",
"binary_version": "4:4.13.3-0ubuntu0.2+esm1"
}
]
}
Ubuntu:Pro:16.04:LTS / kdepim
Package
- Name
- kdepim
- Purl
- pkg:deb/ubuntu/kdepim@4:15.12.3-0ubuntu1.1+esm1?arch=source&distro=esm-apps/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4:15.12.3-0ubuntu1.1+esm1
Affected versions
4:15.*
4:15.08.2-0ubuntu1
4:15.12.1-1ubuntu6
4:15.12.3-0ubuntu1
4:15.12.3-0ubuntu1.1
Ecosystem specific
{
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "accountwizard",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "akonadiconsole",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "akregator",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "blogilo",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "kaddressbook",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "kalarm",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "kdepim",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "kdepim-themeeditors",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "kleopatra",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "kmail",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "knotes",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "konsolekalendar",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "kontact",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "korganizer",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "ktnef",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5calendarsupport5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5composereditorng5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5eventviews5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5followupreminder5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5gravatar5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5incidenceeditorsng5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5kdepimdbusinterfaces5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5kdgantt2-5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5kmanagesieve5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5ksieve5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5ksieveui5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5libkdepim5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5libkleo5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5mailcommon5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5mailimporter5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5messagecomposer5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5messagecore5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5messagelist5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5messageviewer5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5noteshared5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5pimcommon5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5sendlater5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "libkf5templateparser5",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
},
{
"binary_name": "storageservicemanager",
"binary_version": "4:15.12.3-0ubuntu1.1+esm1"
}
]
}
Ubuntu:Pro:18.04:LTS / kf5-messagelib
Package
- Name
- kf5-messagelib
- Purl
- pkg:deb/ubuntu/kf5-messagelib@4:17.12.3-0ubuntu3+esm1?arch=source&distro=esm-apps/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4:17.12.3-0ubuntu3+esm1
Affected versions
4:17.*
4:17.04.3-0ubuntu1
4:17.04.3-0ubuntu2
4:17.08.3-0ubuntu1
4:17.08.3-0ubuntu2
4:17.12.2-0ubuntu3
4:17.12.3-0ubuntu2
4:17.12.3-0ubuntu3
Ecosystem specific
{
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "kf5-messagelib-data",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5messagecomposer-dev",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5messagecomposer5abi2",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5messagecore-dev",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5messagecore5abi2",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5messagelist-dev",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5messagelist5abi1",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5messageviewer-dev",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5messageviewer-plugins",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5messageviewer5abi4",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5mimetreeparser-dev",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5mimetreeparser5abi2",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5templateparser-dev",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5templateparser5abi2",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5webengineviewer-dev",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
},
{
"binary_name": "libkf5webengineviewer5abi3",
"binary_version": "4:17.12.3-0ubuntu3+esm1"
}
]
}