diff options
author | Larry Rosenman <ler@FreeBSD.org> | 2019-03-28 12:24:41 +0000 |
---|---|---|
committer | Larry Rosenman <ler@FreeBSD.org> | 2019-03-28 12:24:41 +0000 |
commit | 0c2a2253280a68a91871a4a73764111d39fd4844 (patch) | |
tree | 1ce10553eb1da46bf241c7504d11875c3aec1f74 /mail/dovecot | |
parent | c32d138002c0faca88808c8d17a2088b7afb0f52 (diff) | |
download | ports-0c2a2253280a68a91871a4a73764111d39fd4844.tar.gz ports-0c2a2253280a68a91871a4a73764111d39fd4844.zip |
mail/dovecot: upgrade to 2.3.5.1.
* CVE-2019-7524: Missing input buffer size validation leads into
arbitrary buffer overflow when reading fts or pop3 uidl header
from Dovecot index. Exploiting this requires direct write access to
the index files.
MFH: 2019Q1
Security: CVE-2019-7524
Notes
Notes:
svn path=/head/; revision=497015
Diffstat (limited to 'mail/dovecot')
-rw-r--r-- | mail/dovecot/Makefile | 3 | ||||
-rw-r--r-- | mail/dovecot/distinfo | 6 |
2 files changed, 4 insertions, 5 deletions
diff --git a/mail/dovecot/Makefile b/mail/dovecot/Makefile index afd1d71a4139..68773f3b5b2f 100644 --- a/mail/dovecot/Makefile +++ b/mail/dovecot/Makefile @@ -7,8 +7,7 @@ ###################################################################### PORTNAME= dovecot -PORTVERSION= 2.3.5 -PORTREVISION= 1 +PORTVERSION= 2.3.5.1 CATEGORIES= mail ipv6 MASTER_SITES= https://www.dovecot.org/releases/2.3/ diff --git a/mail/dovecot/distinfo b/mail/dovecot/distinfo index 0b891fe3fde0..21e2015c389e 100644 --- a/mail/dovecot/distinfo +++ b/mail/dovecot/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1551804380 -SHA256 (dovecot-2.3.5.tar.gz) = bfe112ec6d11f7d6c6f7f0440e3b6e2c840c15cec1e99466b5495765d54aaaff -SIZE (dovecot-2.3.5.tar.gz) = 6970480 +TIMESTAMP = 1553773734 +SHA256 (dovecot-2.3.5.1.tar.gz) = d78f9d479e3b2caa808160f86bfec1c9c7b46344d8b14b88f5fa9bbbf8c7c33f +SIZE (dovecot-2.3.5.1.tar.gz) = 6953150 |