-
Wed Aug 26 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.2.36-6.1
- fix CVE-2020-12100 resource exhaustion via deeply nested MIME parts (#1871841)
- fix CVE-2020-12673 out of bound reads in dovecot NTLM implementation (#1871843)
- fix CVE-2020-12674 crash due to assert in RPA implementation (#1871842)
-
Thu Aug 29 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.2.36-6
- fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte
when scanning data in quoted strings, leading to out of bounds heap
memory writes (#1741787)
-
Tue Aug 13 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.2.36-5
- fix CVE-2019-3814: improper certificate validation (#1674369)
- fix CVE-2019-7524: buffer overflow in indexer-worker process resulting in privilege
escalation (#1700398)
-
Tue Aug 13 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.2.36-4
- use portreserve to avoid port conflicts(#1270283)
-
Wed Sep 19 2018 Michal Hlavinka <mhlavink@redhat.com> - 1:2.2.36-3
- fix global ACL directory configuration search path (#1630380)
- update first/last_valid_gid range patch (#1630409)
-
Mon Jul 30 2018 Michal Hlavinka <mhlavink@redhat.com> - 1:2.2.36-2
- fix defaut permissions of gost run files
-
Tue Jun 12 2018 Michal Hlavinka <mhlavink@redhat.com> - 1:2.2.36-1
- dovecot updated to 2.2.36, pigeonhole to 0.4.24
- fixed dsync not replicating sieve scripts (#1419426)
- fix plugins incorrectly reporting epipe errors(#1489943)
-
Tue Mar 21 2017 Michal Hlavinka <mhlavink@redhat.com> - 1:2.2.10-8
- do not iterate over users outside of first/last_valid_gid range (#1280436)
-
Thu Jun 09 2016 Michal Hlavinka <mhlavink@redhat.com> - 1:2.2.10-7
- prevent warning messages from %post section if selinux-policy is
not installed (yet) (#1057522)
- compile with xz compression support enabled (#1176214)
- fix crash in sieve script compilation (#1177852)
- wait with start after network-online target (#1209006)
- build with tcp wrappers enabled (#1229164)
- fixed userdb extra fields handling in passdb failure (#1234868)
- fix valgrind option detection for make check (#1249625)
- first valid regular user id is 1000 (#1280433)
- fixed race condition when creating a new mailbox and another process getting its GUID (#1331478)
- fixed header parsing when there were multiple same header names (#1224496)
-
Mon Jun 06 2016 Michal Hlavinka <mhlavink@redhat.com> - 1:2.2.10-6
- add devel sub-package (#1122676)