dovecot needs an update to 2.3.15 (security)

Gerben Wierda gerben.wierda at rna.nl
Sun Jul 11 14:49:49 UTC 2021


There is a reasonably serious problem with dovecot security: https://threatpost.com/email-bug-message-snooping-credential-theft/167125/ <https://threatpost.com/email-bug-message-snooping-credential-theft/167125/> which has been made public since June 21. It does require a man-in-the-middle attack, so it is not that easy to exploit, but it is pretty serious as it breaches credentials.

I have created a ticket in trac for the maintainers (as well as this message here) as I did know where I should inform the maintainers.

Yours,

Gerben Wierda (LinkedIn <https://www.linkedin.com/in/gerbenwierda>)
R&A Enterprise Architecture <https://ea.rna.nl/> (main site)
Book: Chess and the Art of Enterprise Architecture <https://ea.rna.nl/the-book/>
Book: Mastering ArchiMate <https://ea.rna.nl/the-book-edition-iii/>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.macports.org/pipermail/macports-users/attachments/20210711/4c4c9aa7/attachment.htm>


More information about the macports-users mailing list