slackware-current

mirror of git://slackware.nl/current.git synced 2024-12-28 09:59:53 +01:00

History

Patrick J Volkerding 05538a2b6d Wed Feb 6 00:29:25 UTC 2019 ap/linuxdoc-tools-0.9.73-x86_64-1.txz: Upgraded. Upgraded to gtk-doc-1.29. Upgraded to asciidoc-8.6.10. Upgraded to perl-XML-SAX-1.00. Thanks to Stuart Winter. d/meson-0.49.2-x86_64-1.txz: Upgraded. d/python-setuptools-40.8.0-x86_64-1.txz: Upgraded. d/slacktrack-2.19-x86_64-1.txz: Upgraded. Thanks to Stuart Winter. l/imagemagick-6.9.10_26-x86_64-1.txz: Upgraded. n/dovecot-2.3.4.1-x86_64-1.txz: Upgraded. This update addresses security issues: CVE-2019-3814: If imap/pop3/managesieve/submission client has trusted certificate with missing username field (ssl_cert_username_field), under some configurations Dovecot mistakenly trusts the username provided via authentication instead of failing. ssl_cert_username_field setting was ignored with external SMTP AUTH, because none of the MTAs (Postfix, Exim) currently send the cert_username field. This may have allowed users with trusted certificate to specify any username in the authentication. This bug didn't affect Dovecot's Submission service. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3814 (* Security fix *)		2019-02-06 08:59:42 +01:00
..
doinst.sh	Mon May 28 19:12:29 UTC 2018	2018-05-31 23:39:35 +02:00
dovecot.config.README.diff	Mon May 28 19:12:29 UTC 2018	2018-05-31 23:39:35 +02:00
dovecot.default.shadow.auth.diff	Mon May 28 19:12:29 UTC 2018	2018-05-31 23:39:35 +02:00
dovecot.SlackBuild	Wed Feb 6 00:29:25 UTC 2019	2019-02-06 08:59:42 +01:00
dovecot.url	Mon May 28 19:12:29 UTC 2018	2018-05-31 23:39:35 +02:00
fix-mysql-double-free.patch	Sun Feb 3 20:26:34 UTC 2019	2019-02-04 08:59:48 +01:00
rc.dovecot	Mon May 28 19:12:29 UTC 2018	2018-05-31 23:39:35 +02:00
slack-desc	Mon May 28 19:12:29 UTC 2018	2018-05-31 23:39:35 +02:00