[Buildroot] [PATCH 1/2] package/dovecot: security bump to version 2.3.6

Peter Korsgaard peter at korsgaard.com
Tue Apr 30 20:43:59 UTC 2019

>>>>> "Bernd" == Bernd Kuhls <bernd.kuhls at t-online.de> writes:

 > Fixes
 > * CVE-2019-11494: Submission-login crashed with signal 11 due to null
 >   pointer access when authentication was aborted by disconnecting.
 > * CVE-2019-11499: Submission-login crashed when authentication was
 >   started over TLS secured channel and invalid authentication message
 >   was sent.

 > Release notes:
 > https://dovecot.org/pipermail/dovecot-news/2019-April/000408.html

 > Signed-off-by: Bernd Kuhls <bernd.kuhls at t-online.de>

Wow, they keep un having security issues :/

Committed, thanks.

Bye, Peter Korsgaard

More information about the buildroot mailing list