Fedora 30: 2019-90925dd5aa Critical Issue: imapfilter SSL Certs

IMAPFilter is a mail filtering utility. It connects to remote mail servers

using the Internet Message Access Protocol (IMAP), sends searching queries

to the server and processes mailboxes based on the results. It can be used

to delete, copy, move, flag, etc. messages residing in mailboxes at the

same or different mail servers. The 4rev1 and 4 versions of the IMAP

protocol are supported.

New upstream release: fixes CVE-2016-10937

* Thu Nov 14 2019 Andrea Veri - 2.6.15-1

- New upstream release. (Fixes CVE-2016-10937)

* Mon May 27 2019 Andrea Veri - 2.6.12-1

- New upstream release. (This release introduces SNI support, fixes

RH BZ #1713160)

[ 1 ] Bug #1765135 - CVE-2016-10937 imapfilter: Missing validation for hostname in an SSL certificate [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1765135

[ 2 ] Bug #1765136 - CVE-2016-10937 imapfilter: Missing validation for hostname in an SSL certificate [epel-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1765136

su -c 'dnf upgrade --advisory FEDORA-2019-90925dd5aa' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/