[ol8_codeready_builder] dovecot-devel-1:2.3.16-2.el8.i686

This package provides the development files for dovecot.

Changelog (Show File list) (Show related packages)

• Wed Dec 08 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-2

  - do not disable xz/lzma for now despite being deprecated

• Wed Dec 08 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-1

  - dovecot updated to 2.3.16, pigeonhole to 0.5.16
  - fix CVE-2021-33515 plaintext commands injection (#1980014)

• Wed Feb 03 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-9

  - fix CVE-2020-24386 IMAP hibernation function allows mail access (#1913534)

• Tue Jan 12 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-8

  - fix CVE-2020-25275 denial of service via mail MIME parsing (#1914019)

• Thu Jan 07 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-7

  - change run directory from /var/run to /run (#1805947)

• Wed Dec 02 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-6

  - fix mail storage block count parsing (#1894418)
  - MIME parser crashed when boundaries were wrong (#1888111)

• Mon Nov 02 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-5

  - multilib compatibility (#1853137)

• Fri Aug 07 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-4

  - fix CVE-2020-12100 resource exhaustion via deeply nested MIME parts (#1866756)
  - fix CVE-2020-12673 out of bound reads in dovecot NTLM implementation (#1866761)
  - fix CVE-2020-12674 crash due to assert in RPA implementation (#1866768)

• Mon Jun 01 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-3

  - fix CVE-2020-10957 dovecot: malformed NOOP commands leads to DoS (#1840354)
  - fix CVE-2020-10958 dovecot: command followed by sufficient number of newlines
    leads to use-after-free (#1840357)
  - fix CVE-2020-10967 dovecot: sending mail with empty quoted localpart
    leads to DoS (#1840356)

• Thu Jan 09 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-2

  - fix default attributes for ghost files