[Fedora Release Engineering] #895: Consider tagging dovecot security update as f10-final
Fedora Release Engineering
rel-eng at fedoraproject.org
Wed Oct 29 09:27:11 UTC 2008
#895: Consider tagging dovecot security update as f10-final
-----------------------------+----------------------------------------------
Reporter: mhlavink | Owner: rel-eng at lists.fedoraproject.org
Type: task | Status: new
Milestone: Fedora 10 Final | Component: koji
Keywords: |
-----------------------------+----------------------------------------------
Hi,
please consider tagging dovecot for f10-final.
nvr: dovecot-1.1.5-1.fc10
why: dovecot was updated because of two CVEs (CVE-2008-4577 and
CVE-2008-4578).
if not: Without 4577 fix dovecot treats negative access rights as if they
are positive access rights. 4578 has lower impact (sub-maildir creation).
Simple tests have been made.
--
Ticket URL: <https://fedorahosted.org/rel-eng/ticket/895>
Fedora Release Engineering <http://fedorahosted.org/rel-eng>
Release Engineering for the Fedora Project
More information about the rel-eng
mailing list