Hi, I have just realized that the same STARTTLS bug affect kolab-cyrus-imapd as well.
Ccing Security team, so they can keep track of the security vulnerability. You can find the patch in pkg-cyrus-imapd/cyrus-imapd-2.2 git repository (on alioth) or in cyrus-imapd-2.2 package sources. I would suggest to fix Berkeley DB in one go, since otherwise the bug will prevent building the packager and migration of fixed package to testing. If you don't have a time, please ping me, I'll prepare security uploads and fixes for unstable. O. -- Ondřej Surý <ond...@sury.org> -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
