FEDORA-2021-364e2809b8 created by mhlavink a year ago for Fedora 33
unpushed
  • dovecot updated to 2.3.13, pigeonhole to 0.5.13
  • CVE-2020-24386: Specially crafted command can cause IMAP hibernate to allow logged in user to access other people's emails and filesystem information.
  • Metric filter and global event filter variable syntax changed to a SQL-like format.
  • auth: Added new aliases for %{variables}. Usage of the old ones is possible, but discouraged.
  • auth: Removed RPA auth mechanism, SKEY auth mechanism, NTLM auth mechanism and related password schemes.
  • auth: Removed passdb-sia, passdb-vpopmail and userdb-vpopmail.
  • auth: Removed postfix postmap socket

This update has been submitted for testing by mhlavink.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update's test gating status has been changed to 'waiting'.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago
User Icon crcinau provided feedback a year ago
karma
BZ#1882939 dovecot fails to start with "key too small" - mkcert use too short bit length
BZ#1912455 CVE-2020-24386 dovecot: IMAP hibernation function allows mail access
BZ#1912456 CVE-2020-24386 dovecot: IMAP hibernation function allows mail access [fedora-all]
BZ#1912460 CVE-2020-25275 dovecot: Denial of service via mail MIME parsing
BZ#1912461 CVE-2020-25275 dovecot: Denial of service via mail MIME parsing [fedora-all]
User Icon bojan provided feedback a year ago
karma

This update can be pushed to stable now if the maintainer wishes

a year ago
User Icon rdtcustomercare commented & provided feedback a year ago

against this version a new Bug has been filed: BZ#1913440

User Icon nb provided feedback a year ago
karma

This update has been submitted for stable by bodhi.

a year ago

This update has been unpushed.


Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
a year ago
in testing
a year ago
BZ#1882939 dovecot fails to start with "key too small" - mkcert use too short bit length
0
1
BZ#1912455 CVE-2020-24386 dovecot: IMAP hibernation function allows mail access
0
1
BZ#1912456 CVE-2020-24386 dovecot: IMAP hibernation function allows mail access [fedora-all]
0
1
BZ#1912460 CVE-2020-25275 dovecot: Denial of service via mail MIME parsing
0
1
BZ#1912461 CVE-2020-25275 dovecot: Denial of service via mail MIME parsing [fedora-all]
0
1

Automated Test Results