CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2019/04/18 11:04:47
Modified files:
mail/dovecot : Makefile distinfo
Log message:
security update to Dovecot 2.3.5.2, from Brad
CVE-2019-10691: Trying to login with 8bit username containing invalid
UTF8 input causes auth process to crash if auth policy is enabled. This
could be used rather easily to cause a DoS. Similar crash also happens
during mail delivery when using invalid UTF8 in From or Subject header
when OX push notification driver is used.
