Fedora Core 5: 2007-485 Moderate Risk in APOP Authentication Flaw

The evolution-data-server package provides a unified backend for programs that work with contacts, tasks, and calendar information.

It was originally developed for Evolution (hence the name), but is now used by other packages.

This update fixes a security vulnerability in APOP

authentication. This only affects POP mail accounts.

- Revise patch for RH bug #235290 to not break string freeze.

* Tue Apr 24 2007 Matthew Barnes - 1.6.3-3.fc5

- Add patch for RH bug #235290 (APOP authentication vulnerability).

* Tue Mar 6 2007 Matthew Barnes - 1.6.3-2.fc5

- Add patch for GNOME bug #301363 (update timezones).

* Thu Aug 3 2006 Matthew Barnes - 1.6.3-1.fc5.2

- Remove patches for Gnome.org bug #309079 (rejected upstream).

- One of these patches was causing RH bug #167157.

- No longer packaging unused patches.

* Mon Jul 31 2006 Matthew Barnes - 1.6.3-1.fc5.1

- Update to 1.6.3

- Dynamically link to BDB.

- Add Requires for db4 and BuildRequires for db4-devel.

- Add missing Requires and BuildRequires from Rawhide.

- Clean up spec file, renumber patches.

* Tue May 30 2006 Matthew Barnes - 1.6.2-1.fc5.1

- Update to 1.6.2

- Remove evolution-data-server-1.3.5-nspr_fix.patch (fixed upstream).

- Update evolution-data-server-1.2.0-validatehelo.patch and rename it to

version 1.6.2.

86bc29ee119ba6e33ae29a32bfab68fffab43a8b SRPMS/evolution-data-server-1.6.3-4.fc5.src.rpm

86bc29ee119ba6e33ae29a32bfab68fffab43a8b noarch/evolution-data-server-1.6.3-4.fc5.src.rpm

7800b2b7eb903fd2f0670206a6bea25078b512a5 ppc/evolution-data-server-1.6.3-4.fc5.ppc.rpm

30f8b9392a0ab767176ea15156e83557515499b0 ppc/evolution-data-server-devel-1.6.3-4.fc5.ppc.rpm

305e9d272d535ad6cc33089d897ed67dc20863fb ppc/debug/evolution-data-server-debuginfo-1.6.3-4.fc5.ppc.rpm

fab7178ed139f106f4958315c7d38e55dedfb9d3 x86_64/evolution-data-server-1.6.3-4.fc5.x86_64.rpm

919ff414f030ba0d3c111c38c38ddfd5b0ba6024 x86_64/debug/evolution-data-server-debuginfo-1.6.3-4.fc5.x86_64.rpm

7c0c7b5c31967be82ea7fa9ceb92b2a65f057613 x86_64/evolution-data-server-devel-1.6.3-4.fc5.x86_64.rpm

03dd3f009993262c7676770e0d8848f922bb2630 i386/debug/evolution-data-server-debuginfo-1.6.3-4.fc5.i386.rpm

ff64383dd1454eb17631d81f0e0d456b0ec8ebf4 i386/evolution-data-server-devel-1.6.3-4.fc5.i386.rpm

78c83b32e29deb2ff764464140b8c8bc4ca2970c i386/evolution-data-server-1.6.3-4.fc5.i386.rpm

This update can be installed with the 'yum' update program. Use 'yum update

package-name' at the command line. For more information, refer to 'Managing

Software with yum,' available at .

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/