projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4afd405) | patch
package/dovecot-pigeonhole: security bump version to 0.5.7.2
authorBernd Kuhls <bernd.kuhls@t-online.de>
Wed, 28 Aug 2019 14:13:15 +0000 (16:13 +0200)
committerPeter Korsgaard <peter@korsgaard.com>
Wed, 28 Aug 2019 15:16:42 +0000 (17:16 +0200)
commit77b2dd9a538e8686d65e843b26cb4c06e61fddb1
tree0879ebeeb32105beef9635aa0eddc0663121df53tree
parent4afd405effdb56af0e09ee83ec4511deb835e630commit | diff
package/dovecot-pigeonhole: security bump version to 0.5.7.2

Release notes:
https://dovecot.org/pipermail/dovecot/2019-August/116876.html

Fixes
* CVE-2019-11500: ManageSieve protocol parser does not properly handle
  NUL byte when scanning data in quoted strings, leading to out of
  bounds heap memory writes. Found by Nick Roessler and Rafi Rubin.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/dovecot-pigeonhole/dovecot-pigeonhole.hash diff | blob | history
package/dovecot-pigeonhole/dovecot-pigeonhole.mk diff | blob | history