[pkg-kolab] Bug#629350: STARTTLS vulnerability in kolab-cyrus-imapd

Ondřej Surý ondrej at sury.org
Sun Jun 5 20:11:10 UTC 2011


I have just realized that the same STARTTLS bug affect
kolab-cyrus-imapd as well.

Ccing Security team, so they can keep track of the security vulnerability.

You can find the patch in pkg-cyrus-imapd/cyrus-imapd-2.2 git
repository (on alioth) or in cyrus-imapd-2.2 package sources.

I would suggest to fix Berkeley DB in one go, since otherwise the bug
will prevent building the packager and migration of fixed package to

If you don't have a time, please ping me, I'll prepare security
uploads and fixes for unstable.

Ondřej Surý <ondrej at sury.org>

More information about the pkg-kolab-devel mailing list