Fri, 29 Mar 2024 11:07:33 UTC | login

Information for build dovecot-2.3.14-1.fc33

ID194967
Package Namedovecot
Version2.3.14
Release1.fc33
Epoch1
Sourcegit+https://src.fedoraproject.org/rpms/dovecot.git#0c1d257072ad397bd3b38e5c10fc072bea26b35d
SummarySecure imap and pop3 server
DescriptionDovecot is an IMAP server for Linux/UNIX-like systems, written with security primarily in mind. It also contains a small POP3 server. It supports mail in either of maildir or mbox formats. The SQL drivers and authentication plug-ins are in their subpackages.
Built bydavidlt
State complete
Volume DEFAULT
StartedSat, 24 Apr 2021 07:00:33 UTC
CompletedSat, 24 Apr 2021 12:23:07 UTC
Taskbuild (f33, /rpms/dovecot.git:0c1d257072ad397bd3b38e5c10fc072bea26b35d)
Extra{'source': {'original_url': 'git+https://src.fedoraproject.org/rpms/dovecot.git#0c1d257072ad397bd3b38e5c10fc072bea26b35d'}}
Tags
f33
f37
f38
RPMs
src
dovecot-2.3.14-1.fc33.src.rpm (info) (download)
riscv64
dovecot-2.3.14-1.fc33.riscv64.rpm (info) (download)
dovecot-devel-2.3.14-1.fc33.riscv64.rpm (info) (download)
dovecot-mysql-2.3.14-1.fc33.riscv64.rpm (info) (download)
dovecot-pgsql-2.3.14-1.fc33.riscv64.rpm (info) (download)
dovecot-pigeonhole-2.3.14-1.fc33.riscv64.rpm (info) (download)
dovecot-debuginfo-2.3.14-1.fc33.riscv64.rpm (info) (download)
dovecot-debugsource-2.3.14-1.fc33.riscv64.rpm (info) (download)
dovecot-mysql-debuginfo-2.3.14-1.fc33.riscv64.rpm (info) (download)
dovecot-pgsql-debuginfo-2.3.14-1.fc33.riscv64.rpm (info) (download)
dovecot-pigeonhole-debuginfo-2.3.14-1.fc33.riscv64.rpm (info) (download)
Logs
riscv64
build.log
hw_info.log
mock_output.log
root.log
state.log
Changelog * Mon Mar 22 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.14-1 - dovecot updated to 2.3.14, pigeonhole to 0.5.14 - use OpenSSL's implementation of HMAC - Remove autocreate, expire, snarf and mail-filter plugins. - Remove cydir storage driver. - Remove XZ/LZMA write support. Read support will be removed in future release. * Mon Feb 08 2021 Pavel Raiskup <praiskup@redhat.com> - 1:2.3.13-7 - rebuild for libpq ABI fix rhbz#1908268 * Mon Feb 01 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.13-6 - use make macros * Tue Jan 26 2021 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.3.13-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Mon Jan 18 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.13-4 - fix multilib issues * Mon Jan 18 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.13-3 - bump release and rebuild * Thu Jan 07 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.13-2 - fix rundir location * Wed Jan 06 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.13-1 - fix release number * Mon Jan 04 2021 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.13-0 - dovecot updated to 2.3.13, pigeonhole to 0.5.13 - CVE-2020-24386: Specially crafted command can cause IMAP hibernate to allow logged in user to access other people's emails and filesystem information. - Metric filter and global event filter variable syntax changed to a SQL-like format. - auth: Added new aliases for %{variables}. Usage of the old ones is possible, but discouraged. - auth: Removed RPA auth mechanism, SKEY auth mechanism, NTLM auth mechanism and related password schemes. - auth: Removed passdb-sia, passdb-vpopmail and userdb-vpopmail. - auth: Removed postfix postmap socket * Wed Oct 21 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.11.3-7 - change run directory from /var/run to /run (#1777922) * Wed Oct 21 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.11.3-6 - use bigger default key size (#1882939) * Wed Sep 02 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.11.3-5 - fix gssapi issue * Wed Aug 26 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.11.3-4 - fix FTBFS on 32bit systems * Mon Aug 17 2020 Jeff Law <law@redhat.com> - 1:2.3.11.3-2 - Disable LTO * Sat Aug 15 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.11.3-1 - CVE-2020-12100: Parsing mails with a large number of MIME parts could have resulted in excessive CPU usage or a crash due to running out of stack memory. - CVE-2020-12673: Dovecot's NTLM implementation does not correctly check message buffer size, which leads to reading past allocation which can lead to crash. - CVE-2020-10967: lmtp/submission: Issuing the RCPT command with an address that has the empty quoted string as local-part causes the lmtp service to crash. - CVE-2020-12674: Dovecot's RPA mechanism implementation accepts zero-length message, which leads to assert-crash later on. * Sat Aug 01 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.3.10.1-3 - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Mon Jul 27 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.3.10.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Mon May 18 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.10.1-1 - dovecot updated to 2.3.10.1 - fixes CVE-2020-10967, CVE-2020-10958, CVE-2020-10957 * Tue Apr 21 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.10-1 - dovecot updated to 2.3.10, pigeonhole updated to 0.5.10 * Wed Feb 12 2020 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.9.3-1 - dovecot updated to 2.3.9.3 - fixes CVE-2020-7046: Truncated UTF-8 can be used to DoS submission-login and lmtp processes. - fixes CVE-2020-7957: Specially crafted mail can crash snippet generation. * Tue Jan 28 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.3.9.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Thu Dec 19 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.9.2-1 - CVE-2019-19722: Mails with group addresses in From or To fields caused crash in push notification drivers. * Wed Dec 04 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.9-1 - dovecot updated to 2.3.9, pigeonhole updated to 0.5.9 * Thu Oct 10 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.8-1 - dovecot updated to 2.3.8, pigeonhole 0.5.8 * Thu Aug 29 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.7.2-1 - dovecot updated to 2.3.7.2, pigeonhole 0.5.7.2 - fixes CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte when scanning data in quoted strings, leading to out of bounds heap memory writes * Mon Aug 19 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:1-2.3.7.1 - dovecot updated to 2.3.7.1, pigeonhole updated to 0.5.7.1 * Wed Jul 24 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.3.6-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Fri May 31 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.6-3 - disable gcc 9 stack reuse temporarily * Mon May 13 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.6-2 - use /run instead of /var/run (#1706372) * Thu May 02 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.6-1 - dovecot updated to 2.3.6, pigeonhole updated to 0.5.6 * Thu Apr 18 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.5.2-1 - dovecot updated to 2.3.5.2 - fixes CVE-2019-10691: Trying to login with 8bit username containing invalid UTF8 input causes auth process to crash if auth policy is enabled. * Thu Mar 28 2019 Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.5.1-1 - dovecot updated to 2.3.5.1 - CVE-2019-7524: Missing input buffer size validation leads into arbitrary buffer overflow when reading fts or pop3 uidl header from Dovecot index.