[Buildroot] [PATCH 1/2] package/dovecot: security bump to version 2.3.6
Peter Korsgaard
peter at korsgaard.com
Tue Apr 30 20:43:59 UTC 2019
>>>>> "Bernd" == Bernd Kuhls <bernd.kuhls at t-online.de> writes:
> Fixes
> * CVE-2019-11494: Submission-login crashed with signal 11 due to null
> pointer access when authentication was aborted by disconnecting.
> * CVE-2019-11499: Submission-login crashed when authentication was
> started over TLS secured channel and invalid authentication message
> was sent.
> Release notes:
> https://dovecot.org/pipermail/dovecot-news/2019-April/000408.html
> Signed-off-by: Bernd Kuhls <bernd.kuhls at t-online.de>
Wow, they keep un having security issues :/
Committed, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list