-
uw-imap (8:2007f~dfsg-5ubuntu0.18.04.2) bionic-security; urgency=medium
* SECURITY UPDATE: Argument injection.
- debian/patches/2013_disable_rsh.patch: Disable access to IMAP mailboxes
through running imapd over rsh, and therefore ssh. Code using the library
can enable it with tcp_parameters() after making sure that the IMAP
server name is sanitized.
- CVE-2018-19518
-- Eduardo Barretto <email address hidden> Thu, 17 Oct 2019 10:52:18 -0300
-
uw-imap (8:2007f~dfsg-5ubuntu0.18.04.1) bionic; urgency=medium
* 2014_openssl1.1.1_sni.patch (new): Use SNI when building
with OpenSSL 1.1.1 / TLSv1.3 support, since some servers
(e.g., imap.gmail.com, imap.mail.att.net) require SNI on
TLSv1.3 to pass certificate verification. (LP: #1834340)
* debian/control.in.in: Update maintainer that lasts build.
-- Mauricio Faria de Oliveira <email address hidden> Fri, 09 Aug 2019 11:51:00 -0300
-
uw-imap (8:2007f~dfsg-5build1) bionic; urgency=high
* No change rebuild against openssl1.1.
-- Dimitri John Ledkov <email address hidden> Mon, 05 Feb 2018 23:29:28 +0000
-
uw-imap (8:2007f~dfsg-5) unstable; urgency=low
* 1006_openssl1.1_autoverify.patch (new): Use new features for
validating certificates when building with OpenSSL 1.1 (Closes:
#828589). Thanks to Sebastian Andrzej Siewior and Kurt Roeckx for
help.
* Switch to Debhelper compat level 9.
* Bump Standards-Version to 3.9.8.
* Update Build-Depends with cdbs.
-- Magnus Holmgren <email address hidden> Wed, 23 Nov 2016 22:25:10 +0100