ubuntu/+source/dovecot:applied/ubuntu/cosmic-devel

Last commit made on 2019-04-30
Get this branch:
git clone -b applied/ubuntu/cosmic-devel https://git.launchpad.net/ubuntu/+source/dovecot
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/cosmic-devel
Repository:
lp:ubuntu/+source/dovecot

Recent commits

366693a... by Marc Deslauriers on 2019-04-29

Import patches-applied version 1:2.3.2.1-1ubuntu3.4 to applied/ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: a5bc71e3203579bec94df65015f2237a72f83f75
Unapplied parent: 52e92f3ba2b4e4c1626c4e4b046ecfe4aea3c222

New changelog entries:
  * SECURITY UPDATE: submission-login denial of service issues
    - debian/patches/CVE-2019-1149x-1.patch: remove unused
      client->pending_starttls in src/submission-login/client.h.
    - debian/patches/CVE-2019-1149x-2.patch: fix crash occurring when
      client disconnects during authentication in
      src/submission-login/client-authenticate.c,
      src/submission-login/client.c.
    - debian/patches/CVE-2019-1149x-3.patch: fix AUTH response error
      handling so that it stops reading more input in
      src/lib-smtp/smtp-server-cmd-auth.c.
    - CVE-2019-11494
    - CVE-2019-11499

52e92f3... by Marc Deslauriers on 2019-04-29

[PATCH 3/3] lib-smtp: smtp-server-cmd-auth - Fix AUTH response error

Gbp-Pq: CVE-2019-1149x-3.patch.

717d791... by Marc Deslauriers on 2019-04-29

[PATCH 2/3] submission-login: client-authenticate - Fix crash

Gbp-Pq: CVE-2019-1149x-2.patch.

4d1503b... by Marc Deslauriers on 2019-04-29

[PATCH 1/3] submission-login: Remove unused client->pending_starttls.

Gbp-Pq: CVE-2019-1149x-1.patch.

46d2da8... by Marc Deslauriers on 2019-04-29

[PATCH 1/2] lib: json - Escape invalid UTF-8 as unicode bytes

Gbp-Pq: CVE-2019-10691.patch.

ed08671... by Marc Deslauriers on 2019-04-29

[PATCH 2/2] fts: Fix buffer overflow when reading oversized fts

Gbp-Pq: CVE-2019-7524-2.patch.

387af55... by Marc Deslauriers on 2019-04-29

[PATCH 1/2] lib-storage: Fix buffer overflow when reading oversized

Gbp-Pq: CVE-2019-7524-1.patch.

8b96116... by Marc Deslauriers on 2019-04-29

[PATCH 3/3] login-common: Ensure we get username from certificate

Gbp-Pq: CVE-2019-3814-3.patch.

8789e24... by Marc Deslauriers on 2019-04-29

[PATCH 2/3] auth: Fail authentication if certificate username was

Gbp-Pq: CVE-2019-3814-2.patch.

7dbef36... by Marc Deslauriers on 2019-04-29

[PATCH 1/3] auth: Do not import empty certificate username

Gbp-Pq: CVE-2019-3814-1.patch.