Oracle Errata SystemOracle Linux5.32021-09-09T12:47:53
ELSA-2009-0205: dovecot security and bug fix update (LOW)
Oracle Linux 5
[1.0.7-7]
- permissions of deliver and dovecot.conf from 1.0.7-5 reverted
- password can be stored in different file readable only for root now
- Resolves: #436287, CVE-2008-4870
[1.0.7-6]
- added missing directory in file list
- Resolves: #436287
[1.0.7-5]
- change permissions of deliver and dovecot.conf to prevent possible password ex
posure
- Resolves: #436287
[1.0.7-4]
- fix handling of negative rights in the ACL plugin
- Resolves: #469015, CVE-2008-4577
[1.0.7-3]
- fix package ownership for /etc/pki/dovecot/private (#448089)
- update init script (#238016)
- ask for SSL cert password during start-up (#436287)
- fix for illegal characters in passwd (#439369)
- Resolves: #448089, #238016, #436287, #439369
LOWCopyright 2009 Oracle, Inc.CVE-2008-4577CVE-2008-4870dovecotoraclelinux-release66ced3de1e5e0159^5ia640:1.0.7-7.el5x86_64i386