[ol8_codeready_builder] dovecot-1:2.3.8-9.el8.i686

Name:	dovecot
Epoch:	1
Version:	2.3.8
Release:	9.el8
Architecture:	i686
Group:	System Environment/Daemons
Size:	17621521
License:	MIT and LGPLv2
RPM:	dovecot-2.3.8-9.el8.i686.rpm
Source RPM:	dovecot-2.3.8-9.el8.src.rpm
Build Date:	Wed Apr 07 2021
Build Host:	host-100-100-224-61.blddevtest1iad.osdevelopmeniad.oraclevcn.com
Vendor:	Oracle America
URL:	http://www.dovecot.org/
Summary:	Secure imap and pop3 server
Description:	Dovecot is an IMAP server for Linux/UNIX-like systems, written with security primarily in mind. It also contains a small POP3 server. It supports mail in either of maildir or mbox formats. The SQL drivers and authentication plug-ins are in their subpackages.

Changelog (Show File list) (Show related packages)

Wed Feb 03 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-9

- fix CVE-2020-24386 IMAP hibernation function allows mail access (#1913534)

Tue Jan 12 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-8

- fix CVE-2020-25275 denial of service via mail MIME parsing (#1914019)

Thu Jan 07 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-7
```
- change run directory from /var/run to /run (#1805947)
```

Wed Dec 02 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-6

- fix mail storage block count parsing (#1894418)
- MIME parser crashed when boundaries were wrong (#1888111)

Mon Nov 02 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-5
```
- multilib compatibility (#1853137)
```

Fri Aug 07 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-4

- fix CVE-2020-12100 resource exhaustion via deeply nested MIME parts (#1866756)
- fix CVE-2020-12673 out of bound reads in dovecot NTLM implementation (#1866761)
- fix CVE-2020-12674 crash due to assert in RPA implementation (#1866768)

Mon Jun 01 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-3

- fix CVE-2020-10957 dovecot: malformed NOOP commands leads to DoS (#1840354)
- fix CVE-2020-10958 dovecot: command followed by sufficient number of newlines
  leads to use-after-free (#1840357)
- fix CVE-2020-10967 dovecot: sending mail with empty quoted localpart
  leads to DoS (#1840356)

Thu Jan 09 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-2
```
- fix default attributes for ghost files
```

Tue Nov 19 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-1

- dovecot updated to 2.3.8 with pigeonhole updated to 0.5.8 (#1653117)

Thu Aug 29 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.2.36-10

- fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte
  when scanning data in quoted strings, leading to out of bounds heap
  memory writes (#1741788)