[pkg-kolab] Bug#629350: STARTTLS vulnerability in kolab-cyrus-imapd

[Ondřej Surý]

Hi,

I have just realized that the same STARTTLS bug affect
kolab-cyrus-imapd as well.

Ccing Security team, so they can keep track of the security vulnerability.

You can find the patch in pkg-cyrus-imapd/cyrus-imapd-2.2 git
repository (on alioth) or in cyrus-imapd-2.2 package sources.

I would suggest to fix Berkeley DB in one go, since otherwise the bug
will prevent building the packager and migration of fixed package to
testing.

If you don't have a time, please ping me, I'll prepare security
uploads and fixes for unstable.

O.
-- 
Ondřej Surý <ondrej at sury.org>