lp:ubuntu/feisty-security/dovecot
- Get this branch:
- bzr branch lp:ubuntu/feisty-security/dovecot
Branch merges
Branch information
Recent revisions
- 23. By Kees Cook
-
* SECURITY UPDATE: mailboxes of other users could be read via symlinks.
* Add upstream-mail-group- fixes.dpatch: upstream fixes (CVE-2008-1199).
* Add upstream-invalid- password- fixes.dpatch: proactive upstream fixes
to avoid future issues in underlying passdb (CVE-2008-1218).
* References
http://dovecot. org/list/ dovecot- news/2008- March/000060. html
http://dovecot. org/list/ dovecot- news/2008- March/000064. html - 22. By Kees Cook
-
* SECURITY UPDATE: LDAP-authenticated users may accidentally shared
cached login when they have the same password.
* Add ldap_auth_cache.dpatch: upstream fixes, thanks to Fabio Tranchitella.
* References
http://dovecot. org/list/ dovecot- news/2007- December/ 000057. html
CVE-2007-6598 - 21. By Kees Cook
-
* SECURITY UPDATE: path traversal in shared spool configurations.
* Add debian/patches/ compressed- folders. dpatch: upstream fix.
* References
CVE-2007-2231 - 20. By Ian Jackson
-
[ Martin Pitt, edited lightly by Ian Jackson: ]
Add debian/tests/: autopkgtest control file plus our current package-tests
test suite for security QA. - 19. By Matthias Klose
-
* Merge from debian unstable, remaining changes:
- snakeoil ssl
- Remove stop script symlinks from rc0 and rc6 - 18. By Michael Vogt
-
* Merge from debian unstable, remaining changes:
- snakeoil ssl
- Remove stop script symlinks from rc0 and rc6 - 17. By Michael Vogt
-
* Merge from debian unstable. Remaining changes:
- snakeoil ssl
- Remove stop script symlinks from rc0 and rc6 - 16. By Scott James Remnant (Canonical)
-
* Remove stop script symlinks from rc0 and rc6.
* Remove dependency on linux-kernel-headers.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/lucid/dovecot