Errata overview
Errata ID 380
Date 2018-05-08
Source package kdepim
Fixed in version 4:4.14.1-1+deb8u1
This update addresses the following issue:
* KDE kmail and messagelib do not ensure that a plugin's sign/encrypt action
  occurs during use of the Send Later feature, which allows remote attackers
  to obtain sensitive information by sniffing the network. (CVE-2017-9604)
Additional notes
CVE ID CVE-2017-9604
UCS Bug number #46135