On 20/05/2011 18:44, Moritz Muehlenhoff wrote: > Package: dovecot > Severity: grave > Tags: security > > Hi Dovecot maintainers, > CVE-2011-1929 was assigned to the following issue fixed in > 1.2.17 and 2.0.13: > > | Fixed potential crashes and other problems when parsing > | header names that contained NUL characters. > > http://dovecot.org/pipermail/dovecot/2011-May/059085.html > http://dovecot.org/pipermail/dovecot/2011-May/059086.html > > Patch: > http://hg.dovecot.org/dovecot-1.1/rev/3698dfe0f21c >
I've just realized that also the stable version is affected. Tomorow I'll prepare the update on package's repository. Regards, Marco -- --------------------------------------------------------------------- | Marco Nenciarini | Debian/GNU Linux Developer - Plug Member | | mnen...@prato.linux.it | http://www.prato.linux.it/~mnencia | --------------------------------------------------------------------- Key fingerprint = FED9 69C7 9E67 21F5 7D95 5270 6864 730D F095 E5E4
signature.asc
Description: OpenPGP digital signature
