NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
bf90b0b417
kumquat-buildroot/package/dovecot
History
Peter Korsgaard 5fcaff911d package/dovecot: security bump to version 2.3.5.2 
Fixes the following security issue:

* CVE-2019-10691: Trying to login with 8bit username containing
  invalid UTF8 input causes auth process to crash if auth policy is
  enabled. This could be used rather easily to cause a DoS. Similar
  crash also happens during mail delivery when using invalid UTF8 in
  From or Subject header when OX push notification driver is used.

https://dovecot.org/pipermail/dovecot-news/2019-April/000406.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 89c7e417ed)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2019-04-26 15:06:22 +02:00
..
0001-byteorder.h-fix-uclibc-build.patch
Config.in
dovecot.hash package/dovecot: security bump to version 2.3.5.2 2019-04-26 15:06:22 +02:00
dovecot.mk package/dovecot: security bump to version 2.3.5.2 2019-04-26 15:06:22 +02:00