58c7d3ff17
This fixes CVE_2020-24386, CVE-2020-25725 and a bunch of regular bugs [1]. * CVE-2020-24386: Specially crafted command can cause IMAP hibernate to allow logged in user to access other people's emails and filesystem information. * CVE-2020-25275: Mail delivery / parsing crashed when the 10 000th MIME part was message/rfc822 (or if parent was multipart/digest). This happened due to earlier MIME parsing changes for CVE-2020-12100. [1] https://raw.githubusercontent.com/dovecot/core/2.3.13/NEWS |
||
---|---|---|
.. | ||
archiveopteryx | ||
clamsmtp | ||
dkimproxy | ||
dovecot | ||
dspam | ||
exim | ||
mailhog | ||
mailman | ||
mlmmj | ||
nullmailer | ||
opensmtpd | ||
petidomo | ||
popa3d | ||
postfix | ||
postgrey | ||
postsrsd | ||
public-inbox | ||
pypolicyd-spf | ||
rspamd | ||
spamassassin | ||
sympa | ||
system-sendmail |