[Git][security-tracker-team/security-tracker][master] cyrus-imapd DSA

Moritz Muehlenhoff jmm at debian.org
Thu Dec 19 22:50:39 GMT 2019



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a4b203de by Moritz Muehlenhoff at 2019-12-19T22:50:14Z
cyrus-imapd DSA

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -6942,7 +6942,7 @@ CVE-2019-18929 (Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web
 	NOT-FOR-US: Western Digital My Cloud EX2 Ultra firmware
 CVE-2019-18928 (Cyrus IMAP 2.5.x before 2.5.14 and 3.x before 3.0.12 allows privilege  ...)
 	- cyrus-imapd 3.0.12-1
-	[buster] - cyrus-imapd <no-dsa> (Minor issue; can be fixed via point release)
+	[buster] - cyrus-imapd 3.0.8-6+deb10u3
 	[stretch] - cyrus-imapd <no-dsa> (Minor issue; can be fixed via point release)
 	NOTE: https://github.com/cyrusimap/cyrus-imapd/commit/e675bf7b0e9c6e160516d274bffaec6f9dccaef7 (cyrus-imapd-3.0.12)
 	NOTE: Fixed in 3.0.12 and 2.5.14 upstream


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[19 Dec 2019] DSA-4590-1 cyrus-imapd - security update
+	[stretch] - cyrus-imapd 2.5.10-3+deb9u2
+	[buster] - cyrus-imapd 3.0.8-6+deb10u3
 [18 Dec 2019] DSA-4589-1 debian-edu-config - security update
 	{CVE-2019-3467}
 	[stretch] - debian-edu-config 1.929+deb9u4


=====================================
data/dsa-needed.txt
=====================================
@@ -21,8 +21,6 @@ chromium
 --
 curl (ghedo)
 --
-cyrus-imapd (jmm)
---
 cyrus-sasl2 (carnil)
 --
 evince/oldstable



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a4b203de02ad9e4a6826be0bbfd09ab41764b15a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a4b203de02ad9e4a6826be0bbfd09ab41764b15a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191219/573ac6e8/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list