dovecot 1:2.2.27-3+deb9u2 source package in Debian
Changelog
dovecot (1:2.2.27-3+deb9u2) stretch-security; urgency=high
* [794e743] Fix CVE-2017-14461: rfc822_parse_domain information leak
vulnerability (Closes: #891819)
* [530ca6d] Fix CVE-2017-15130: TLS SNI config lookups are inefficient and
can be used for DoS (Closes: #891820)
+ Use dh-autoreconf, as src/Makefile.in needs to be regenerated. Also
disable dovecot_name.patch, since it changes dovecot's banner in
conjunction with dh_autoreconf.
* [68c2156] Fix CVE-2017-15132: memory leak on aborted SASL auth (Closes:
#888432)
-- Apollon Oikonomopoulos <email address hidden> Thu, 01 Mar 2018 15:15:45 +0200
Upload details
- Uploaded by:
- Jaldhar H. Vyas
- Uploaded to:
- Stretch
- Original maintainer:
- Jaldhar H. Vyas
- Architectures:
- any
- Section:
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| dovecot_2.2.27-3+deb9u2.dsc | 3.3 KiB | c17238c824dff83a841e167c9d5f97374d6baade9444b4a95cd31558d392c6f2 |
| dovecot_2.2.27.orig.tar.gz | 5.5 MiB | 897f92a87cda4b27b243f8149ce0ba7b7e71a2be8fb7994eb0a025e54cde18e9 |
| dovecot_2.2.27-3+deb9u2.debian.tar.xz | 842.7 KiB | c7771f0ec59e5fb4f2da546267757e611030a2098bc72e5ece8ddc82bb6e4e84 |
No changes file available.
