dovecot security and bug fix update

2013-02-22T00:00:00
ID ELSA-2013-0520
Type oraclelinux
Reporter Oracle
Modified 2013-02-22T00:00:00

Description

[1:2.0.9-5] - script-login did not drop privileges correctly (#709095) - fix directory traversal due to not obeying chroot directive (#709097) - check proxy destination host against SSL certificate name (#754980) [1:2.0.9-4] - dovecot may not set correct premissions for mail folder (#697620) [1:2.0.9-3] - fix potential crash when parsing header names that contain NUL characters (#728673)