Accepted dovecot 1:2.2.13-12~deb8u6 (source amd64) into oldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 29 Mar 2019 12:38:40 +0100
Source: dovecot
Binary: dovecot-core dovecot-dev dovecot-imapd dovecot-pop3d dovecot-lmtpd dovecot-managesieved dovecot-pgsql dovecot-mysql dovecot-sqlite dovecot-ldap dovecot-gssapi dovecot-sieve dovecot-solr dovecot-lucene dovecot-dbg
Architecture: source amd64
Version: 1:2.2.13-12~deb8u6
Distribution: jessie-security
Urgency: high
Maintainer: Dovecot Maintainers <jaldhar-dovecot@debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Description:
dovecot-core - secure POP3/IMAP server - core files
dovecot-dbg - secure POP3/IMAP server - debug symbols
dovecot-dev - secure POP3/IMAP server - header files
dovecot-gssapi - secure POP3/IMAP server - GSSAPI support
dovecot-imapd - secure POP3/IMAP server - IMAP daemon
dovecot-ldap - secure POP3/IMAP server - LDAP support
dovecot-lmtpd - secure POP3/IMAP server - LMTP server
dovecot-lucene - secure POP3/IMAP server - Lucene support
dovecot-managesieved - secure POP3/IMAP server - ManageSieve server
dovecot-mysql - secure POP3/IMAP server - MySQL support
dovecot-pgsql - secure POP3/IMAP server - PostgreSQL support
dovecot-pop3d - secure POP3/IMAP server - POP3 daemon
dovecot-sieve - secure POP3/IMAP server - Sieve filters support
dovecot-solr - secure POP3/IMAP server - Solr support
dovecot-sqlite - secure POP3/IMAP server - SQLite support
Changes:
dovecot (1:2.2.13-12~deb8u6) jessie-security; urgency=high
.
* Non-maintainer upload by the LTS team.
* CVE-2019-7524:
A security vulnerability was discovered in the Dovecot email server. When
reading FTS headers from the Dovecot index, the input buffer
size is not bounds-checked. An attacker with the ability to modify dovecot
indexes, can take advantage of this flaw for privilege escalation or the
execution of arbitrary code with the permissions of the dovecot user. Only
installations using the FTS plugins are affected.
Checksums-Sha1:
671d615fc906e3b2b437a9d07879ebe822f07129 3486 dovecot_2.2.13-12~deb8u6.dsc
1ee43174691f3f7b3c312054ea68d3d1eb77f30f 746764 dovecot_2.2.13-12~deb8u6.debian.tar.xz
a4da44c4c32bbaef07dab55e2ab10df0cfdbfe52 2668162 dovecot-core_2.2.13-12~deb8u6_amd64.deb
7e1f0eb50bd25b5333bd3241069f3439b827d028 751070 dovecot-dev_2.2.13-12~deb8u6_amd64.deb
a0951c4a50f5c7680fbd533e40132c862517609f 647734 dovecot-imapd_2.2.13-12~deb8u6_amd64.deb
9fb931c03ee8ee6a830f41d38063a05071998d7f 551014 dovecot-pop3d_2.2.13-12~deb8u6_amd64.deb
d27fe9820196e8b056d45dd3a4d6a883d7f61f70 542868 dovecot-lmtpd_2.2.13-12~deb8u6_amd64.deb
45f368053807cb6781ce115a0e8b39072965385c 569904 dovecot-managesieved_2.2.13-12~deb8u6_amd64.deb
6d601038e3331189730d4a943ffabc75539f3436 534392 dovecot-pgsql_2.2.13-12~deb8u6_amd64.deb
d746008cb63ae19bbefea8cc08e97bccd595acd9 532048 dovecot-mysql_2.2.13-12~deb8u6_amd64.deb
9f5245d5605db2b1e1afba91a643cd28e2630ad3 530254 dovecot-sqlite_2.2.13-12~deb8u6_amd64.deb
a632d55856baf8ed79bab629a0442c8a4342137c 545338 dovecot-ldap_2.2.13-12~deb8u6_amd64.deb
7dfadc3c2bcdbd470d98421e03d68a4d14acc369 531424 dovecot-gssapi_2.2.13-12~deb8u6_amd64.deb
70308ea9baf710aa76b780caa84ab2d3625dbc09 768150 dovecot-sieve_2.2.13-12~deb8u6_amd64.deb
d7d238a2301e79fe96d620a5e9c06a861042dd09 542300 dovecot-solr_2.2.13-12~deb8u6_amd64.deb
21d369266c65514e54dbf5cd2a89d5ed742b8cb3 549384 dovecot-lucene_2.2.13-12~deb8u6_amd64.deb
42795c40313844a9c445a4d50716e6d663edde7d 6736276 dovecot-dbg_2.2.13-12~deb8u6_amd64.deb
Checksums-Sha256:
526f2488ef91d7a9758911f56df19e3d85ebf25d6f3de8f2235e948bf21e7016 3486 dovecot_2.2.13-12~deb8u6.dsc
4242f321c55f8b83ec2e2d5ea56fdd48175698909c939363647781daa47369bf 746764 dovecot_2.2.13-12~deb8u6.debian.tar.xz
d542577f461786fa4dd9f846725ba64fcef5d196d5ad65ec8a77017d4d6ae714 2668162 dovecot-core_2.2.13-12~deb8u6_amd64.deb
7ac98470dfa96a5eb5faebfda40d4f5c1a1ea388a2a6c302a5adb43faeebcf02 751070 dovecot-dev_2.2.13-12~deb8u6_amd64.deb
ca6973a3798f1d8b85d29a852ab4057bce15a58a3c51dd0acc29feb731dbf55c 647734 dovecot-imapd_2.2.13-12~deb8u6_amd64.deb
b1999508b538bf41baa69b069f8be3d0b9ec6be0f0a161fb0e61d6662f193809 551014 dovecot-pop3d_2.2.13-12~deb8u6_amd64.deb
d7ced09d70f09b4c61d7b791b1a92da68e597981c90bbfe441a9e9e90487feb7 542868 dovecot-lmtpd_2.2.13-12~deb8u6_amd64.deb
5e0474d2e33da9e11342d683acf07815cc36d8e3574b744461f201bd73ecaddc 569904 dovecot-managesieved_2.2.13-12~deb8u6_amd64.deb
4b34ccd97ceaa29ba1336440fec8a324ec831a941db98f985ed1d9937780a656 534392 dovecot-pgsql_2.2.13-12~deb8u6_amd64.deb
f41b46bfa7aaf8e996a073112313d3eafc9ef44f4bb568ad2a621aa6690d5b07 532048 dovecot-mysql_2.2.13-12~deb8u6_amd64.deb
b1bb7fd3bfa933c2651b0de1d6f42780564420c06af60b452ca42da5ec2a0bc6 530254 dovecot-sqlite_2.2.13-12~deb8u6_amd64.deb
21ae81c8773a3d6240921d393824ce5d3f917fdccfbfa71cfc8c6cd76f349141 545338 dovecot-ldap_2.2.13-12~deb8u6_amd64.deb
2431f1cc364c4eb4e4728c55543433d8b76a5a3bd92bf9a252eda71f9007f404 531424 dovecot-gssapi_2.2.13-12~deb8u6_amd64.deb
ed874a59b48efdd78af6c438f369ee580e83bdfd2adac7e1712fdd4831cb0cd6 768150 dovecot-sieve_2.2.13-12~deb8u6_amd64.deb
25b5132f0b6647591692be9338203dbb73e882bef452e8ea64c03105dd0283c4 542300 dovecot-solr_2.2.13-12~deb8u6_amd64.deb
5449787ab65a51fb3fff299ae80799078293cead52331866bc7fd49fee33d45b 549384 dovecot-lucene_2.2.13-12~deb8u6_amd64.deb
78b8a8ab4bf5e1e3f75f07a8a6ee900a9a210c45978a5a773cc1862225c4b48a 6736276 dovecot-dbg_2.2.13-12~deb8u6_amd64.deb
Files:
414e57d8e850a644a7aaded06d7d6d94 3486 mail optional dovecot_2.2.13-12~deb8u6.dsc
c1f90a56c2975ee4950141087a4d7c49 746764 mail optional dovecot_2.2.13-12~deb8u6.debian.tar.xz
d6f0f4f40b595e6139eda03866ed0e27 2668162 mail optional dovecot-core_2.2.13-12~deb8u6_amd64.deb
4c00a89c85b9b9bf7c14211de31a2ee9 751070 mail optional dovecot-dev_2.2.13-12~deb8u6_amd64.deb
302795bcce0ffad23129f3e951445e05 647734 mail optional dovecot-imapd_2.2.13-12~deb8u6_amd64.deb
00669d41181e595e23ce82f1272e5f08 551014 mail optional dovecot-pop3d_2.2.13-12~deb8u6_amd64.deb
f87fce14ab11622ab2d21eaaf3d1c785 542868 mail optional dovecot-lmtpd_2.2.13-12~deb8u6_amd64.deb
ee01ade3e84b8e344eeea74a91263d7d 569904 mail optional dovecot-managesieved_2.2.13-12~deb8u6_amd64.deb
ca82487bdba18fbe3ec1143a0b701d96 534392 mail optional dovecot-pgsql_2.2.13-12~deb8u6_amd64.deb
e1c92c4dfbe404ce010eb4017dc096c5 532048 mail optional dovecot-mysql_2.2.13-12~deb8u6_amd64.deb
084bd77e4c5254ca4fa4661dc027f523 530254 mail optional dovecot-sqlite_2.2.13-12~deb8u6_amd64.deb
660de0379c129ed96f77d758e52b86a3 545338 mail optional dovecot-ldap_2.2.13-12~deb8u6_amd64.deb
9e17e5549af59ce2cc1bfac7fba6fe8b 531424 mail optional dovecot-gssapi_2.2.13-12~deb8u6_amd64.deb
324f51cfa1e8c294cac35c4cfb3a3579 768150 mail optional dovecot-sieve_2.2.13-12~deb8u6_amd64.deb
a5de4ffec9d40c5edeed1970be938ab8 542300 mail optional dovecot-solr_2.2.13-12~deb8u6_amd64.deb
325c840a16675a13c5152a0c642e0d34 549384 mail optional dovecot-lucene_2.2.13-12~deb8u6_amd64.deb
236d56f4e1067da8e1b54aab7e1f3b81 6736276 debug extra dovecot-dbg_2.2.13-12~deb8u6_amd64.deb
-----BEGIN PGP SIGNATURE-----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=liot
-----END PGP SIGNATURE-----