From 20161db902350fbf3593f159a857206273bcbf1c999e85686c9f74178dc53aad Mon Sep 17 00:00:00 2001
From: Wolfgang Rosenauer <wolfgang@rosenauer.org>
Date: Thu, 21 Dec 2017 14:09:33 +0000
Subject: [PATCH] Accepting request 559103 from
 home:AndreasStieger:branches:mozilla:Factory

augment changelog

OBS-URL: https://build.opensuse.org/request/show/559103
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/enigmail?expand=0&rev=39
---
 enigmail.changes | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/enigmail.changes b/enigmail.changes
index c5d3bdf..fff98ec 100644
--- a/enigmail.changes
+++ b/enigmail.changes
@@ -1,8 +1,14 @@
 -------------------------------------------------------------------
 Wed Dec 20 14:13:36 UTC 2017 - thardeck@suse.com
 
-- enigmail 1.9.9
-  * Addresses security vulnerabilities discovered by Cure53. 
+- enigmail 1.9.9, fixing multiple vulnerabilities (boo#1073858):
+  * Enigmail could be coerced to use a malicious PGP public key
+    with a corresponding secret key controlled by an attacker
+  * Enigmail could have replayed encrypted content in partially
+    encrypted e-mails, allowing a plaintext leak
+  * Enigmail could be tricked into displaying incorrect signature
+    verification results
+  * Specially crafted content may cause denial of service
 
 -------------------------------------------------------------------
 Wed Oct  4 14:57:28 UTC 2017 - astieger@suse.com