Dovecot news - Apr 2019

Tuesday April 30 2019
TimeRepliesSubject
1:46PM 0 Pigeonhole release 0.5.6
1:26PM 0 CVE-2019-11499: Submission-login crashes when authentication is started over TLS secured channel and invalid authentication message is sent
1:25PM 0 CVE-2019-11494: Submission-login crashes with signal 11 due to null pointer access when authentication is aborted by disconnecting.
1:21PM 5 Dovecot release v2.3.6
 
Thursday April 18 2019
TimeRepliesSubject
9:35AM 2 v2.3.5.2 released
9:06AM 0 CVE-2019-10691: JSON encoder in Dovecot 2.3 incorrecty assert-crashes when encountering invalid UTF-8 characters.
9:05AM 0 v2.3.5.2 released