[pkg-kolab] Bug#629350: STARTTLS vulnerability in kolab-cyrus-imapd
Ondřej Surý
ondrej at sury.org
Sun Jun 5 20:11:10 UTC 2011
Hi,
I have just realized that the same STARTTLS bug affect
kolab-cyrus-imapd as well.
Ccing Security team, so they can keep track of the security vulnerability.
You can find the patch in pkg-cyrus-imapd/cyrus-imapd-2.2 git
repository (on alioth) or in cyrus-imapd-2.2 package sources.
I would suggest to fix Berkeley DB in one go, since otherwise the bug
will prevent building the packager and migration of fixed package to
testing.
If you don't have a time, please ping me, I'll prepare security
uploads and fixes for unstable.
O.
--
Ondřej Surý <ondrej at sury.org>
More information about the pkg-kolab-devel
mailing list