From 17360c94fb1c9abcc8bcede94b28ccf088bbbf79e8f50151aa9a019235eac63e Mon Sep 17 00:00:00 2001
From: Wolfgang Rosenauer <wolfgang@rosenauer.org>
Date: Wed, 16 May 2018 16:19:56 +0000
Subject: [PATCH] Accepting request 609851 from
 home:AndreasStieger:branches:mozilla:Factory

- enigmail 2.0.4:
  * CVE-2017-17688: CFB gadget attacks allowed to exfiltrate
    plaintext out of encrypted emails. enigmail now fails on GnuPG
    integrit check warnings for old Algorithms (EFAIL, bsc#1093151)
  * CVE-2017-17689: CBC gadget attacks allows to exfiltrate
    plaintext out of encrypted emails (EFAIL), bsc#1093152)

OBS-URL: https://build.opensuse.org/request/show/609851
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/enigmail?expand=0&rev=49
---
 enigmail-2.0.3.tar.gz     |  3 ---
 enigmail-2.0.3.tar.gz.asc | 16 ----------------
 enigmail-2.0.4.tar.gz     |  3 +++
 enigmail-2.0.4.tar.gz.asc | 16 ++++++++++++++++
 enigmail.changes          | 10 ++++++++++
 enigmail.spec             |  2 +-
 6 files changed, 30 insertions(+), 20 deletions(-)
 delete mode 100644 enigmail-2.0.3.tar.gz
 delete mode 100644 enigmail-2.0.3.tar.gz.asc
 create mode 100644 enigmail-2.0.4.tar.gz
 create mode 100644 enigmail-2.0.4.tar.gz.asc

diff --git a/enigmail-2.0.3.tar.gz b/enigmail-2.0.3.tar.gz
deleted file mode 100644
index e025c3e..0000000
--- a/enigmail-2.0.3.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:ab3b486beeef6c743834a90342a7bb5b57e23acaaca4de9037897f7f875273d9
-size 2532924
diff --git a/enigmail-2.0.3.tar.gz.asc b/enigmail-2.0.3.tar.gz.asc
deleted file mode 100644
index 7e0c487..0000000
--- a/enigmail-2.0.3.tar.gz.asc
+++ /dev/null
@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEET5+J9VBawdGiYGMc2xGHud1faTsFAlrxNj8ACgkQ2xGHud1f
-aTuKQhAAs8VhnuZ2zAgVaojTdnzAJ4Yzje97KVXx/vsxfnwD0D8vebYrT92tKe8b
-kjTWPjAHjgozYzXR+zX8Tq8WrLItMHyZz7POsJ4wql12WNc5CBlSXI6drsQ66/YU
-xdMHsxayj0FD2s1rP03+juBggagmwdXNIkHPfPN9NanHTxfJ3W1rmet0XZYozcjb
-n/zlETYPptYqhnVoHzQp5S0jPxKA8PL1TwBaT+SjBVDK0EK8JNoOjSheOk/hA94Q
-83VhAqqYkd8gmnTnpvw/PPoXVMA9LyxTvpEEfWfe/a4KsRuLeMrKLX1kCiNvwJor
-prwd5FhRiNhK+upBfRB8zaEeSOq907jl4lF2noydCGNv0CR5h4oKiJaADlD339+j
-Jsxglcq1hwYYwCjYjsToCqppqj/tqEysdmHdTknB0jgbiQTxrCHsOsZJapgTAW9m
-c3V7phZfI03gYzZlX2voEXlyOrSiH3sbXE+eX5Aj7rFD2LnmHZuE4x1u9LAwVog5
-9KjXs9/XfZg0plOn+r8nKWqKMOFosWHnBXHoa1xnBxd2Io+H8KcpNS9AQOq2iMeK
-WUT7smCHC0SjDwMQ9a/kqltjHCRFMB8BjRpe34BE7rHbOQUsUw2E8gjRSbd3jRKI
-Ky9Gcx/DUQScryPYDXK1GHFZe9MTGk7x+Xcatdpeyw7LrCn/MiY=
-=guIH
------END PGP SIGNATURE-----
diff --git a/enigmail-2.0.4.tar.gz b/enigmail-2.0.4.tar.gz
new file mode 100644
index 0000000..b6e6587
--- /dev/null
+++ b/enigmail-2.0.4.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:987da12fea24005c761f0f2624f0c72c247492d7abde44422e796bd70b34c649
+size 2533719
diff --git a/enigmail-2.0.4.tar.gz.asc b/enigmail-2.0.4.tar.gz.asc
new file mode 100644
index 0000000..8f18365
--- /dev/null
+++ b/enigmail-2.0.4.tar.gz.asc
@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=IBll
+-----END PGP SIGNATURE-----
diff --git a/enigmail.changes b/enigmail.changes
index 888146a..c2aaf38 100644
--- a/enigmail.changes
+++ b/enigmail.changes
@@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Wed May 16 15:07:43 UTC 2018 - astieger@suse.com
+
+- enigmail 2.0.4:
+  * CVE-2017-17688: CFB gadget attacks allowed to exfiltrate
+    plaintext out of encrypted emails. enigmail now fails on GnuPG
+    integrit check warnings for old Algorithms (EFAIL, bsc#1093151)
+  * CVE-2017-17689: CBC gadget attacks allows to exfiltrate
+    plaintext out of encrypted emails (EFAIL), bsc#1093152)
+
 -------------------------------------------------------------------
 Wed May  9 13:52:41 UTC 2018 - astieger@suse.com
 
diff --git a/enigmail.spec b/enigmail.spec
index 1bb75d0..6ce2d2a 100644
--- a/enigmail.spec
+++ b/enigmail.spec
@@ -18,7 +18,7 @@
 
 
 Name:           enigmail
-Version:        2.0.3
+Version:        2.0.4
 Release:        0
 Summary:        OpenPGP addon for Thunderbird and SeaMonkey
 License:        MPL-2.0