On 10/16/14 06:19, Thijs Kinkhorst wrote:
On Wed, October 15, 2014 16:30, Henrik Langos wrote:
Here's the patch:
http://www.dovecot.org/pipermail/dovecot/2014-October/098244.html
There is also a statement that pop/imap might be harder/impossible to
exploit but I wouldn't buy that just yet
Package: dovecot-common
Version: 1:1.2.15-7
Severity: grave
Tags: security squeeze upstream
Justification: user security hole
Hi there,
I guess everybody knows by now that CVE-2014-3566 changes the status
of SSLv3 from mostly-obsolete to mostly-broken.
Unfortunately dovecot previous to 2.1
Package: nslcd
Version: 0.7.15+squeeze2
During installation the /var/lib/dpkg/info/nslcd.config script tries
to guess the LDAP search base from the systems domain name:
37 # if the ldap-base value doesn't seem to be preseeded, try to use
the
38 # domain name to build the
Package: krb5-kdc-ldap
Version: 1.10+dfsg~beta1-2
Severity: normal
File: /usr/share/doc/krb5-kdc-ldap/kerberos.ldif.gz
Dear Maintainer,
I am setting up multimaster replication between ldap servers and
thus I import schema definitions by using ldapadd and .ldif files
instead of (the deprecated
Package: samba-doc
Version: 2:3.6.3-1
Severity: normal
File: /usr/share/doc/samba-doc/examples/LDAP/samba.ldif.gz
Dear Maintainer,
There is a syntax error in the provided samba.ldif file that
shows up like this:
root@kdc01:~# zcat /usr/share/doc/samba-doc/examples/LDAP/samba.ldif.gz |
Package: courier-authlib-ldap
Version: 0.63.0-4
Severity: normal
File: /usr/share/doc/courier-authlib-ldap/authldap.schema.gz
Dear Maintainer,
I tried to generate an authldap.ldif file from the provided authldap.schema
(since Bug#632179 is still open).
Apparently the authldap.schema file is
Fixed upstream :
http://listengine.tuxfamily.org/chrony.tuxfamily.org/chrony-dev/2011/06/msg6.html
see also: https://bugs.launchpad.net/ubuntu/+source/chrony/+bug/793387
-henrik
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe.
FYI: This bug also breaks user supplied scripts (/etc/xen/scripts/block-*)
that are needed to handle block device mounting other than phy: and file:
disks.
See attached email from debian-user mailing list.
cheers
-henrik
---BeginMessage---
Just upgraded from Lenny to Squeeze and ran into the
Package: avahi-daemon
Version: 0.6.16-3etch1
Severity: normal
*** Please type your report below this line ***
If another process (like webalizer in my case) eats up all available file
descriptors then avahi-daemon goes into a busy loop on its accept() system
call and floods the syslog. this
9 matches
Mail list logo