Subject: CVS commit: pkgsrc/mail
From: Adam Ciarcinski
Date: 2019-04-19 07:35:04
Message id: 20190419053504.437C4FB16@cvs.NetBSD.org

Log Message:
dovecot2: updated to 2.3.5.2

v2.3.5.2
* CVE-2019-10691: Trying to login with 8bit username containing
  invalid UTF8 input causes auth process to crash if auth policy is
  enabled. This could be used rather easily to cause a DoS. Similar
  crash also happens during mail delivery when using invalid UTF8 in
  From or Subject header when OX push notification driver is used.

Files:
RevisionActionfile
1.27modifypkgsrc/mail/dovecot2/Makefile.common
1.91modifypkgsrc/mail/dovecot2/distinfo
1.19modifypkgsrc/mail/dovecot2-sqlite/Makefile