cyrus-imapd-2.2 (2.2.13p1-11) unstable; urgency=low
* Fix CVE-2011-1926: STARTTLS plaintext command injection
vulnerability (VU#555316)
* Fix infinite loop in case of corrupted index files (Closes: #627078)
-- Ondřej Surý <[email protected]> Wed, 18 May 2011 10:43:58 +0200
... synced into precise with 2.2.13p1-15; although I might shortly
remove this in favour of cyrus-imapd-2.4.
** Changed in: cyrus-imapd-2.2 (Ubuntu Precise)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/880924
Title:
STARTTLS implementation allows MITM
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cyrus-imapd-2.2/+bug/880924/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
