Hello, I have applied the patch for dovecot version 2.3.4.1 in buster. May I submit it to the release team ? The final version would be:
dovecot (1:2.3.4.1-5+deb10u4) buster; urgency=medium Thomas Goirand helped me to build this. Regards, Raphaël -- infomaniak Raphaël Walther | Administrateur système Rue Eugène-Marziano 25, 1227 Genève Swiss Made| ISO 27001 14001 50001 rwalther@lynx:~/code$ debdiff dovecot_2.3.4.1-5+deb10u3.dsc dovecot_2.3.4.1-5+deb10u3.1.dsc … diff -Nru dovecot-2.3.4.1/debian/changelog dovecot-2.3.4.1/debian/changelog --- dovecot-2.3.4.1/debian/changelog 2020-08-11 03:03:03.000000000 +0200 +++ dovecot-2.3.4.1/debian/changelog 2020-08-26 15:14:25.000000000 +0200 @@ -1,3 +1,10 @@ +dovecot (1:2.3.4.1-5+deb10u3.1) buster; urgency=medium + + * Non-maintainer upload. + * Applied upstream patch to fix broken sieve sync (Closes: #930919) + + -- Raphaël Walther <raphael.walt...@infomaniak.com> Wed, 26 Aug 2020 15:14:25 +0200 + dovecot (1:2.3.4.1-5+deb10u3) buster-security; urgency=high * Fix CVE-2020-12100 - Receiving mail with deeply nested MIME parts leads to diff -Nru dovecot-2.3.4.1/debian/patches/doveadm-sieve_fix_script_sync.patch dovecot-2.3.4.1/debian/patches/doveadm-sieve_fix_script_sync.patch --- dovecot-2.3.4.1/debian/patches/doveadm-sieve_fix_script_sync.patch 1970-01-01 01:00:00.000000000 +0100 +++ dovecot-2.3.4.1/debian/patches/doveadm-sieve_fix_script_sync.patch 2020-08-26 15:14:03.000000000 +0200 @@ -0,0 +1,21 @@ +Description: doveadm-sieve: Fix script synchronization + When dsyncing, this codepath is always called with prefix "". + There is no point checking the prefix at all. +Author: Aki Tuomi <cmo...@cmouse.fi> +Origin: upstream, https://github.com/dovecot/pigeonhole/commit/0e91911d22d43621c820d7f5b28be671050fd290 +Bug-Debian: https://bugs.debian.org/930919 +Last-Update: 2020-08-26 + +--- dovecot-2.3.4.1.orig/pigeonhole/src/plugins/doveadm-sieve/doveadm-sieve-sync.c ++++ dovecot-2.3.4.1/pigeonhole/src/plugins/doveadm-sieve/doveadm-sieve-sync.c +@@ -606,9 +606,7 @@ sieve_attribute_iter_init(struct mailbox + siter->iter.box = box; + siter->super = sbox->super.attribute_iter_init(box, type, prefix); + +- if (box->storage->user->dsyncing && +- type == MAIL_ATTRIBUTE_TYPE_PRIVATE && +- str_begins(prefix, MAILBOX_ATTRIBUTE_PREFIX_SIEVE)) { ++ if (box->storage->user->dsyncing) { + if (sieve_attribute_iter_script_init(siter) < 0) + siter->failed = TRUE; + } diff -Nru dovecot-2.3.4.1/debian/patches/series dovecot-2.3.4.1/debian/patches/series --- dovecot-2.3.4.1/debian/patches/series 2020-08-11 03:03:03.000000000 +0200 +++ dovecot-2.3.4.1/debian/patches/series 2020-08-26 15:09:27.000000000 +0200 @@ -52,3 +52,4 @@ CVE-2020-12673.patch CVE-2020-12674/0001-auth-mech-rpa-Fail-on-zero-len-buffer.patch debian-changes +doveadm-sieve_fix_script_sync.patch
signature.asc
Description: PGP signature
