SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for dovecot-pigeonhole-2.3.14-1.fc32.x86_64.rpm :

* Mon Mar 22 2021 Michal Hlavinka - 1:2.3.14-1- dovecot updated to 2.3.14, pigeonhole to 0.5.14- use OpenSSL\'s implementation of HMAC- Remove autocreate, expire, snarf and mail-filter plugins.- Remove cydir storage driver.- Remove XZ/LZMA write support. Read support will be removed in future release.
* Mon Feb 08 2021 Pavel Raiskup - 1:2.3.13-7- rebuild for libpq ABI fix rhbz#1908268
* Mon Feb 01 2021 Michal Hlavinka - 1:2.3.13-6- use make macros
* Tue Jan 26 2021 Fedora Release Engineering - 1:2.3.13-5- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Mon Jan 18 2021 Michal Hlavinka - 1:2.3.13-4- fix multilib issues
* Mon Jan 18 2021 Michal Hlavinka - 1:2.3.13-3- bump release and rebuild
* Thu Jan 07 2021 Michal Hlavinka - 1:2.3.13-2- fix rundir location
* Wed Jan 06 2021 Michal Hlavinka - 1:2.3.13-1- fix release number
* Mon Jan 04 2021 Michal Hlavinka - 1:2.3.13-0- dovecot updated to 2.3.13, pigeonhole to 0.5.13- CVE-2020-24386: Specially crafted command can cause IMAP hibernate to allow logged in user to access other people\'s emails and filesystem information.- Metric filter and global event filter variable syntax changed to a SQL-like format. - auth: Added new aliases for %{variables}. Usage of the old ones is possible, but discouraged.- auth: Removed RPA auth mechanism, SKEY auth mechanism, NTLM auth mechanism and related password schemes.- auth: Removed passdb-sia, passdb-vpopmail and userdb-vpopmail.- auth: Removed postfix postmap socket
* Wed Oct 21 2020 Michal Hlavinka - 1:2.3.11.3-7- change run directory from /var/run to /run (#1777922)
* Wed Oct 21 2020 Michal Hlavinka - 1:2.3.11.3-6- use bigger default key size (#1882939)
* Wed Sep 02 2020 Michal Hlavinka - 1:2.3.11.3-5- fix gssapi issue
* Wed Aug 26 2020 Michal Hlavinka - 1:2.3.11.3-4- fix FTBFS on 32bit systems
* Mon Aug 17 2020 Jeff Law - 1:2.3.11.3-2- Disable LTO
* Sat Aug 15 2020 Michal Hlavinka - 1:2.3.11.3-1- CVE-2020-12100: Parsing mails with a large number of MIME parts could have resulted in excessive CPU usage or a crash due to running out of stack memory.- CVE-2020-12673: Dovecot\'s NTLM implementation does not correctly check message buffer size, which leads to reading past allocation which can lead to crash.- CVE-2020-10967: lmtp/submission: Issuing the RCPT command with an address that has the empty quoted string as local-part causes the lmtp service to crash.- CVE-2020-12674: Dovecot\'s RPA mechanism implementation accepts zero-length message, which leads to assert-crash later on.
* Sat Aug 01 2020 Fedora Release Engineering - 1:2.3.10.1-3- Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Mon Jul 27 2020 Fedora Release Engineering - 1:2.3.10.1-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Mon May 18 2020 Michal Hlavinka - 1:2.3.10.1-1- dovecot updated to 2.3.10.1- fixes CVE-2020-10967, CVE-2020-10958, CVE-2020-10957
* Tue Apr 21 2020 Michal Hlavinka - 1:2.3.10-1- dovecot updated to 2.3.10, pigeonhole updated to 0.5.10
* Wed Feb 12 2020 Michal Hlavinka - 1:2.3.9.3-1- dovecot updated to 2.3.9.3- fixes CVE-2020-7046: Truncated UTF-8 can be used to DoS submission-login and lmtp processes.- fixes CVE-2020-7957: Specially crafted mail can crash snippet generation.
* Tue Jan 28 2020 Fedora Release Engineering - 1:2.3.9.2-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Thu Dec 19 2019 Michal Hlavinka - 1:2.3.9.2-1- CVE-2019-19722: Mails with group addresses in From or To fields caused crash in push notification drivers.
* Wed Dec 04 2019 Michal Hlavinka - 1:2.3.9-1- dovecot updated to 2.3.9, pigeonhole updated to 0.5.9
* Thu Oct 10 2019 Michal Hlavinka - 1:2.3.8-1- dovecot updated to 2.3.8, pigeonhole 0.5.8
* Thu Aug 29 2019 Michal Hlavinka - 1:2.3.7.2-1- dovecot updated to 2.3.7.2, pigeonhole 0.5.7.2- fixes CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte when scanning data in quoted strings, leading to out of bounds heap memory writes
* Mon Aug 19 2019 Michal Hlavinka - 1:1-2.3.7.1- dovecot updated to 2.3.7.1, pigeonhole updated to 0.5.7.1
* Wed Jul 24 2019 Fedora Release Engineering - 1:2.3.6-4- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Fri May 31 2019 Michal Hlavinka - 1:2.3.6-3- disable gcc 9 stack reuse temporarily
* Mon May 13 2019 Michal Hlavinka - 1:2.3.6-2- use /run instead of /var/run (#1706372)
* Thu May 02 2019 Michal Hlavinka - 1:2.3.6-1- dovecot updated to 2.3.6, pigeonhole updated to 0.5.6
* Thu Apr 18 2019 Michal Hlavinka - 1:2.3.5.2-1- dovecot updated to 2.3.5.2- fixes CVE-2019-10691: Trying to login with 8bit username containing invalid UTF8 input causes auth process to crash if auth policy is enabled.
  
ICM