diff options
author | taca <taca@pkgsrc.org> | 2021-06-21 15:34:58 +0000 |
---|---|---|
committer | taca <taca@pkgsrc.org> | 2021-06-21 15:34:58 +0000 |
commit | 8d9a231c1cf21195fe01469f4a436ea250000e1e (patch) | |
tree | 853ea15f1611aaeeff9ed6f9b943abe1d8ce36e0 /mail | |
parent | 63ed42892c8702eed21a2c7268bd5eababff71e0 (diff) | |
download | pkgsrc-8d9a231c1cf21195fe01469f4a436ea250000e1e.tar.gz |
mail/dovecot2-pigeonhole: update to 0.5.15
Security release.
v0.5.15 2021-06-21 Aki Tuomi <aki.tuomi@open-xchange.com>
* CVE-2020-28200: Sieve interpreter is not protected against abusive
scripts that claim excessive resource usage. Fixed by limiting the
user CPU time per single script execution and cumulatively over
several script runs within a configurable timeout period. Sufficiently
large CPU time usage is summed in the Sieve script binary and execution
is blocked when the sum exceeds the limit within that time. The block
is lifted when the script is updated after the resource usage times out.
* Disconnection log messages are now more standardized across services.
They also always now start with "Disconnected" prefix.
- managesieve: Commands pipelined together with and just after the
authenticate command cause these commands to be executed twice.
Diffstat (limited to 'mail')
-rw-r--r-- | mail/dovecot2-pigeonhole/Makefile | 4 | ||||
-rw-r--r-- | mail/dovecot2-pigeonhole/distinfo | 10 |
2 files changed, 7 insertions, 7 deletions
diff --git a/mail/dovecot2-pigeonhole/Makefile b/mail/dovecot2-pigeonhole/Makefile index 2123733036b..7f617c12556 100644 --- a/mail/dovecot2-pigeonhole/Makefile +++ b/mail/dovecot2-pigeonhole/Makefile @@ -1,6 +1,6 @@ -# $NetBSD: Makefile,v 1.61 2021/03/07 08:28:20 taca Exp $ +# $NetBSD: Makefile,v 1.62 2021/06/21 15:34:58 taca Exp $ -DISTNAME= dovecot-2.3-pigeonhole-0.5.14 +DISTNAME= dovecot-2.3-pigeonhole-0.5.15 PKGNAME= ${DISTNAME:S/-2.3-/-/} CATEGORIES= mail MASTER_SITES= https://pigeonhole.dovecot.org/releases/2.3/ diff --git a/mail/dovecot2-pigeonhole/distinfo b/mail/dovecot2-pigeonhole/distinfo index af7a1b4b440..0087d5248da 100644 --- a/mail/dovecot2-pigeonhole/distinfo +++ b/mail/dovecot2-pigeonhole/distinfo @@ -1,7 +1,7 @@ -$NetBSD: distinfo,v 1.46 2021/03/07 08:28:20 taca Exp $ +$NetBSD: distinfo,v 1.47 2021/06/21 15:34:58 taca Exp $ -SHA1 (dovecot-2.3-pigeonhole-0.5.14.tar.gz) = 6fc5c5f2f8fb23129b1db08c8316910ee734cf63 -RMD160 (dovecot-2.3-pigeonhole-0.5.14.tar.gz) = edb41524e3b83d6cc96e740844bc5fb4ce43dc4d -SHA512 (dovecot-2.3-pigeonhole-0.5.14.tar.gz) = c5d5d309769eabe2c0971646d0c14d166b6b524acf59e1069eca803f764544fa2535c09c9a630ca706aa70442b688ee26af831d29e674823bac7ea7c0e1f33cc -Size (dovecot-2.3-pigeonhole-0.5.14.tar.gz) = 1910607 bytes +SHA1 (dovecot-2.3-pigeonhole-0.5.15.tar.gz) = fd1b4d0fcdef7ef9170fbc736233de43745235e6 +RMD160 (dovecot-2.3-pigeonhole-0.5.15.tar.gz) = 04a9ebdbb69ece59d3f0d2815ebfcd41b01a38e8 +SHA512 (dovecot-2.3-pigeonhole-0.5.15.tar.gz) = 521070080802bf2a50cd0ff0af5dc991c04d70b807abc2cd9aa567444a4869f5f42800f19d9b740a519bd4069437139e70ca6ae4b905479fcec8faa133ac5f54 +Size (dovecot-2.3-pigeonhole-0.5.15.tar.gz) = 1935601 bytes SHA1 (patch-aa) = 264399e166b5fece22bacd47b043c59f8f0f0a29 |