[ol8_codeready_builder] dovecot-devel-1:2.3.16-6.el8_10.x86_64

This package provides the development files for dovecot.

Changelog (Show File list) (Show related packages)

• Tue Aug 20 2024 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-6

  - fix CVE-2024-23185: very large headers can cause resource exhaustion when parsing message (RHEL-55219)
  - fix CVE-2024-23184: using a large number of address headers may trigger a denial of service (RHEL-55206)

• Fri Feb 16 2024 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-5

  - fixes assert-crash when IMAP client uses QRESYNC (#RHEL-22854)

• Fri Aug 04 2023 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-4

  - fix leaking mailboxes if virtual mailbox can't be opened (#2128857)

• Tue Jul 19 2022 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-3

  - fix possible privilege escalation when similar master and non-master passdbs are used (#2106231)

• Wed Dec 08 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-2

  - do not disable xz/lzma for now despite being deprecated

• Wed Dec 08 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-1

  - dovecot updated to 2.3.16, pigeonhole to 0.5.16
  - fix CVE-2021-33515 plaintext commands injection (#1980014)

• Wed Feb 03 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-9

  - fix CVE-2020-24386 IMAP hibernation function allows mail access (#1913534)

• Tue Jan 12 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-8

  - fix CVE-2020-25275 denial of service via mail MIME parsing (#1914019)

• Thu Jan 07 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-7

  - change run directory from /var/run to /run (#1805947)

• Wed Dec 02 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-6

  - fix mail storage block count parsing (#1894418)
  - MIME parser crashed when boundaries were wrong (#1888111)