diff options
author | Larry Rosenman <ler@FreeBSD.org> | 2019-08-28 15:59:59 +0000 |
---|---|---|
committer | Larry Rosenman <ler@FreeBSD.org> | 2019-08-28 15:59:59 +0000 |
commit | 3d824592bda988e6d8b3379d3410c6f5bc862dc4 (patch) | |
tree | 229dd553c8a36baddda5bd2b9492354e6d709cd4 /mail/dovecot/distinfo | |
parent | 45bb6e18ebb43b223cc4a50a7e064d8b90fb56d5 (diff) | |
download | ports-3d824592bda988e6d8b3379d3410c6f5bc862dc4.tar.gz ports-3d824592bda988e6d8b3379d3410c6f5bc862dc4.zip |
mail/dovecot,mail/dovecot-pigeonhole: fix CVE-2019-11500
Changes
-------
* CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte
when scanning data in quoted strings, leading to out of bounds heap
memory writes. Found by Nick Roessler and Rafi Rubin.
MFH: 2019Q3
Security: CVE-2019-11500
Notes
Notes:
svn path=/head/; revision=510075
Diffstat (limited to 'mail/dovecot/distinfo')
-rw-r--r-- | mail/dovecot/distinfo | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/mail/dovecot/distinfo b/mail/dovecot/distinfo index 679bd62996c1..d0bd6801671f 100644 --- a/mail/dovecot/distinfo +++ b/mail/dovecot/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1563891542 -SHA256 (dovecot-2.3.7.1.tar.gz) = c5a51d6f76e6e9c843df69e52a364a4c65c4c60e0c51d992eaa45f22f71803c3 -SIZE (dovecot-2.3.7.1.tar.gz) = 7076500 +TIMESTAMP = 1567006255 +SHA256 (dovecot-2.3.7.2.tar.gz) = 666ce084760a47e601d49a9be3c7993c48789d332631e8dfb45f443b367b1260 +SIZE (dovecot-2.3.7.2.tar.gz) = 7076231 |