diff options
| author | adam <adam@pkgsrc.org> | 2019-04-19 05:35:03 +0000 |
|---|---|---|
| committer | adam <adam@pkgsrc.org> | 2019-04-19 05:35:03 +0000 |
| commit | f8bfed8d0be7aa0355f42bec70c06cf89bca1e61 (patch) | |
| tree | a06552d6b0114051a8c8e5a5f3171fa81aa0135b /mail/dovecot2 | |
| parent | ecc2be580443b8920dc7fa1c6d152549e09c8137 (diff) | |
| download | pkgsrc-f8bfed8d0be7aa0355f42bec70c06cf89bca1e61.tar.gz | |
dovecot2: updated to 2.3.5.2
v2.3.5.2
* CVE-2019-10691: Trying to login with 8bit username containing
invalid UTF8 input causes auth process to crash if auth policy is
enabled. This could be used rather easily to cause a DoS. Similar
crash also happens during mail delivery when using invalid UTF8 in
From or Subject header when OX push notification driver is used.
Diffstat (limited to 'mail/dovecot2')
| -rw-r--r-- | mail/dovecot2/Makefile.common | 4 | ||||
| -rw-r--r-- | mail/dovecot2/distinfo | 10 |
2 files changed, 7 insertions, 7 deletions
diff --git a/mail/dovecot2/Makefile.common b/mail/dovecot2/Makefile.common index 25f77c91e0b..f4d86bfd6a3 100644 --- a/mail/dovecot2/Makefile.common +++ b/mail/dovecot2/Makefile.common @@ -1,4 +1,4 @@ -# $NetBSD: Makefile.common,v 1.26 2019/03/29 14:27:43 hauke Exp $ +# $NetBSD: Makefile.common,v 1.27 2019/04/19 05:35:03 adam Exp $ # # when updating to a new release, update ABI depends in # the buildlink3.mk file as well, since the plugins' version @@ -11,7 +11,7 @@ # used by mail/dovecot2-pgsql/Makefile # used by mail/dovecot2-sqlite/Makefile -DISTNAME= dovecot-2.3.5.1 +DISTNAME= dovecot-2.3.5.2 CATEGORIES= mail MASTER_SITES= https://www.dovecot.org/releases/${PKGVERSION_NOREV:R:R}/ diff --git a/mail/dovecot2/distinfo b/mail/dovecot2/distinfo index d6267c9d84f..36408fab7bd 100644 --- a/mail/dovecot2/distinfo +++ b/mail/dovecot2/distinfo @@ -1,9 +1,9 @@ -$NetBSD: distinfo,v 1.90 2019/03/29 14:27:43 hauke Exp $ +$NetBSD: distinfo,v 1.91 2019/04/19 05:35:04 adam Exp $ -SHA1 (dovecot-2.3.5.1.tar.gz) = 073ff93eeffc8166303ee3fb36b71c7a8d8a0230 -RMD160 (dovecot-2.3.5.1.tar.gz) = fc380f77e4a97808237a37697b3a11010e255921 -SHA512 (dovecot-2.3.5.1.tar.gz) = e87754461fb0b065acd0ff10dc955000a2fe5baffed69efaf328ce9268f90140e9de444bc68e0bd48b565c7622885a79b1f90ff3dd2335c0c2362d05d9e73e8a -Size (dovecot-2.3.5.1.tar.gz) = 6953150 bytes +SHA1 (dovecot-2.3.5.2.tar.gz) = 501740dd5e3d299115cdc04798efb546c33b3d9d +RMD160 (dovecot-2.3.5.2.tar.gz) = 30af7bb381740968ac515915c77e4dd804f0febe +SHA512 (dovecot-2.3.5.2.tar.gz) = 041ec1c33c6accb5c89d96d7ab2f7dd59795f496c17faea1906e7977983e4a387aa855a238376515c09532731634d9d42e6d6be22659062855241847ea0213d5 +Size (dovecot-2.3.5.2.tar.gz) = 6953228 bytes SHA1 (patch-aa) = ea185011f0c1ee3aa1ff528e61f6f356fe385666 SHA1 (patch-ab) = 9db15fd853ba47ef4bf04f2adc9ab24f71ee4d1e SHA1 (patch-ae) = c795585df9f415ceabb28eec1ff691ee26168d3b |