Accepting request 909090 from GNOME:Factory

Synchronize the changelog with SLE and Leap. (forwarded request 909080 from yfjiang) OBS-URL: https://build.opensuse.org/request/show/909090 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/evolution-data-server?expand=0&rev=226
2021-07-29 19:31:16 +00:00 · 2021-07-29 19:31:16 +00:00 · b1112eb74d
commit b1112eb74d
parent da6a41d354 63ca421847
1 changed files with 11 additions and 0 deletions
--- a/evolution-data-server.changes
+++ b/evolution-data-server.changes
@ -300,6 +300,7 @@ Sat Jul  4 09:42:33 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com>
    glgo#GNOME/evolution-data-server#226 (CVE-2020-14928),
    glgo#GNOME/evolution-data-server#228, glgo#GNOME/evolution#982.
  + Updated translations.
+- Drop CVE-2020-14928.patch: fixed upstream.

 -------------------------------------------------------------------
 Fri May 29 19:39:53 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com>
@ -367,6 +368,8 @@ Fri Feb 14 10:28:19 UTC 2020 - Dominique Leuenberger <dimstar@opensuse.org>
      calendars only.
  + Various bug fixes.
  + Updated translations.
+- Drop CVE-2020-16117.patch: fixed upstream
+  (glgo#GNOME/evolution-data-server#189)

 -------------------------------------------------------------------
 Fri Feb 14 09:50:53 UTC 2020 - Dominique Leuenberger <dimstar@opensuse.org>
@ -409,6 +412,14 @@ Fri Feb 14 09:50:52 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com>
      search folders.
  + Updated translations.

+-------------------------------------------------------------------
+Fri Feb 13 20:27:50 UTC 2020 - Michael Gorse <mgorse@suse.com>
+
+- Add CVE-2020-16117.patch: Fix crash on malformed server response
+  with minimal capabilities (boo#1174712 CVE-2020-16117).
+- Add CVE-2020-14928.patch: Response injection via STARTTLS in SMTP
+  and POP3 (boo#1173910 CVE-2020-14928).
+
 -------------------------------------------------------------------
 Sat Jan 25 14:07:19 UTC 2020 - Dominique Leuenberger <dimstar@opensuse.org>