[ubuntu/karmic] dovecot 1:1.1.11-0ubuntu9 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Sat Sep 26 23:19:22 BST 2009 

dovecot (1:1.1.11-0ubuntu9) karmic; urgency=low

  * SECURITY UPDATE: arbitrary code execution via buffer overlows in
    the Sieve plugin
    - debian/patches/security-CVE-2009-3235.dpatch: increase scount size in
      dovecot-sieve/src/libsieve/bc_eval.c, use snprintf in
      dovecot-sieve/src/libsieve/sieve.y, use snprintf and calculate the
      right length in dovecot-sieve/src/libsieve/script.c.
    - CVE-2009-2632
    - CVE-2009-3235

Date: Thu, 24 Sep 2009 08:10:42 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Jamie Strandboge <jamie at ubuntu.com>
https://launchpad.net/ubuntu/karmic/+source/dovecot/1:1.1.11-0ubuntu9
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 24 Sep 2009 08:10:42 -0400
Source: dovecot
Binary: dovecot-common dovecot-dev dovecot-imapd dovecot-pop3d dovecot-postfix
Architecture: source
Version: 1:1.1.11-0ubuntu9
Distribution: karmic
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 dovecot-common - secure mail server that supports mbox and maildir mailboxes
 dovecot-dev - header files for the dovecot mail server
 dovecot-imapd - secure IMAP server that supports mbox and maildir mailboxes
 dovecot-pop3d - secure POP3 server that supports mbox and maildir mailboxes
 dovecot-postfix - full mail server stack provided by Ubuntu server team
Changes: 
 dovecot (1:1.1.11-0ubuntu9) karmic; urgency=low
 .
   * SECURITY UPDATE: arbitrary code execution via buffer overlows in
     the Sieve plugin
     - debian/patches/security-CVE-2009-3235.dpatch: increase scount size in
       dovecot-sieve/src/libsieve/bc_eval.c, use snprintf in
       dovecot-sieve/src/libsieve/sieve.y, use snprintf and calculate the
       right length in dovecot-sieve/src/libsieve/script.c.
     - CVE-2009-2632
     - CVE-2009-3235
Checksums-Sha1: 
 844fb7e242f790f179e68767dcc9c8da1ba88e0b 1636 dovecot_1.1.11-0ubuntu9.dsc
 10dcf4c9e8702fe4e0b5e3de2ad0825ade99ffbc 933685 dovecot_1.1.11-0ubuntu9.diff.gz
Checksums-Sha256: 
 740b219fd04fa18bf764c23545bff6d56210d17bcde04254e07117990f96a949 1636 dovecot_1.1.11-0ubuntu9.dsc
 136c7612a1cfac0005174c7f5f4216b7bfb778a541bb23717b817297e0545987 933685 dovecot_1.1.11-0ubuntu9.diff.gz
Files: 
 a8ec4815c136fcf7107b5fb1ab430421 1636 mail optional dovecot_1.1.11-0ubuntu9.dsc
 75606fac8426d59764d1710301d95f6a 933685 mail optional dovecot_1.1.11-0ubuntu9.diff.gz
Original-Maintainer: Dovecot Maintainers <jaldhar-dovecot at debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkq9EvkACgkQW0JvuRdL8BroIQCfa5hCrQYJUxoK8ZuDfyqNwnV3
vbYAnRF+Jf/KBA/5WBXUPA/VlVLcRxke
=elMA
-----END PGP SIGNATURE-----

More information about the Karmic-changes mailing list