[ 00:27 ler  ]

• 544857 mail/dovecot-pigeonhole/Makefile
• 544857 mail/dovecot-pigeonhole/distinfo
• 544857 mail/dovecot/Makefile
• 544857 mail/dovecot/distinfo
• 544857 mail/dovecot/files/patch-configure
• 544857 mail/dovecot/files/patch-src_lib-fts_fts-filter-stemmer-snowball.c
• 544857 mail/dovecot/files/patch-src_lib-master_master-service.c
• 544857 mail/dovecot/files/patch-src_plugins_fts-lucene_SnowballFilter.h
• 544857 mail/dovecot/files/patch-src_plugins_fts-solr_solr-connection.c
• 544857 mail/dovecot/pkg-plist

mail/dovecot, mail/dovecot-pigeonhole: upgrade to 2.3.11.3 and 0.5.11,
repectively.

dovecot changelog:
* CVE-2020-12100: Parsing mails with a large number of MIME parts could
  have resulted in excessive CPU usage or a crash due to running out of
  stack memory.
* CVE-2020-12673: Dovecot's NTLM implementation does not correctly check
  message buffer size, which leads to reading past allocation which can
  lead to crash.
* CVE-2020-10967: lmtp/submission: Issuing the RCPT command with an
  address that has the empty quoted string as local-part causes the lmtp
  service to crash.
* CVE-2020-12674: Dovecot's RPA mechanism implementation accepts
  zero-length message, which leads to assert-crash later on.
* Events: Fix inconsistency in events. See event documentation in

(Only the first 15 lines of the commit message are shown above )

[ 22:07 ler  ]

• 529013 mail/dovecot/Makefile
• 529013 mail/dovecot/files/patch-configure
• 529013 mail/dovecot/files/patch-plugins_fts-lucene_Makefile.in
• 529013 mail/dovecot/files/patch-src_lib-fts_Makefile.in
• 529013 mail/dovecot/files/patch-src_lib-fts_fts-filter-stemmer-snowball.c
• 529013 mail/dovecot/files/patch-src_plugins_fts-lucene_SnowballFilter.h

mail/dovecot: use libexttextcat for lucene.

PR:		244932
Submitted by:	igorz@yandex.ru