From fd6bcffaed04ad49d1c7cee6fdbe0f4771c816c56ebcd81c4732aacf0f0a8a53 Mon Sep 17 00:00:00 2001 From: David Sterba Date: Tue, 17 Jul 2018 10:29:44 +0000 Subject: [PATCH 1/3] Accepting request 623325 from home:kbabioch:branches:server:mail - Updated to 20180716 * Feature: function * Lots of bug fixes OBS-URL: https://build.opensuse.org/request/show/623325 OBS-URL: https://build.opensuse.org/package/show/server:mail/neomutt?expand=0&rev=15 --- neomutt-20180622.tar.gz | 3 --- neomutt-20180716.tar.gz | 3 +++ neomutt.changes | 7 +++++++ neomutt.spec | 2 +- 4 files changed, 11 insertions(+), 4 deletions(-) delete mode 100644 neomutt-20180622.tar.gz create mode 100644 neomutt-20180716.tar.gz diff --git a/neomutt-20180622.tar.gz b/neomutt-20180622.tar.gz deleted file mode 100644 index 28e7ea0..0000000 --- a/neomutt-20180622.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:9289ef61668c4eee39a85fb593f4afcb520a90d7840609fd922444b05dedf399 -size 2769280 diff --git a/neomutt-20180716.tar.gz b/neomutt-20180716.tar.gz new file mode 100644 index 0000000..b17d275 --- /dev/null +++ b/neomutt-20180716.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:bd89826980b493ba312228c9c14ffe2403e268571aea6008c6dc7ed3848de200 +size 2778105 diff --git a/neomutt.changes b/neomutt.changes index 7879dfc..69be81a 100644 --- a/neomutt.changes +++ b/neomutt.changes @@ -1,3 +1,10 @@ +------------------------------------------------------------------- +Tue Jul 17 09:26:21 UTC 2018 - kbabioch@suse.com + +- Updated to 20180716 + * Feature: function + * Lots of bug fixes + ------------------------------------------------------------------- Mon Jun 25 00:00:00 CEST 2018 - dsterba@suse.cz diff --git a/neomutt.spec b/neomutt.spec index e8f1b35..6820ffa 100644 --- a/neomutt.spec +++ b/neomutt.spec @@ -17,7 +17,7 @@ Name: neomutt -Version: 20180622 +Version: 20180716 Release: 0 Summary: A command line mail reader (or MUA), a fork of Mutt with added features License: GPL-2.0-or-later From 5faea06cddbca2622f2c41b2677671fd22a52cb11dc265883ca8e3d4ed1d9dc7 Mon Sep 17 00:00:00 2001 From: David Sterba Date: Tue, 17 Jul 2018 10:40:43 +0000 Subject: [PATCH 2/3] update changelog with bsc OBS-URL: https://build.opensuse.org/package/show/server:mail/neomutt?expand=0&rev=16 --- neomutt.changes | 2 ++ 1 file changed, 2 insertions(+) diff --git a/neomutt.changes b/neomutt.changes index 69be81a..823db56 100644 --- a/neomutt.changes +++ b/neomutt.changes @@ -4,6 +4,8 @@ Tue Jul 17 09:26:21 UTC 2018 - kbabioch@suse.com - Updated to 20180716 * Feature: function * Lots of bug fixes + * fix for bsc#1101428: code injection and a couple path traversal + vulnerabilities ------------------------------------------------------------------- Mon Jun 25 00:00:00 CEST 2018 - dsterba@suse.cz From fdb3084c2a9d79e2115ea4389a471a070de222d1aa62b3f04858d58c2386e889 Mon Sep 17 00:00:00 2001 From: David Sterba Date: Wed, 18 Jul 2018 11:39:09 +0000 Subject: [PATCH 3/3] Accepting request 623626 from home:kbabioch:branches:server:mail * Lots of bug fixes and vulnerability fixes: - CVE-2018-14349: Fixed mishandling of NO response without message in imap/command.c (bnc#1101589) - CVE-2018-14350: Fixed stack-based buffer overflow for FETCH response with long INTERNALDATE field in imap/message.c (bnc#1101588) - CVE-2018-14351: Fixed mishandling of a long IMAP status mailbox literal count size in imap/command.c (bnc#1101583) - CVE-2018-14352: Fixed stack-based buffer overflow in imap_quote_string in imap/util.c (bnc#1101582) - CVE-2018-14353: Fixed integer underflow in imap_quote_string in imap/util.c (bnc#1101581) - CVE-2018-14354: Fixed arbitrary command execution via backquote characters, related to the mailboxes command associated with manual subscription or unsubscription (bnc#1101578) - CVE-2018-14355: Fixed directory traversal in mailbox name in imap/util.c (bnc#1101577) - CVE-2018-14356: Fixed mishandling of zero-length UID in pop.c (bnc#1101576) - CVE-2018-14357: Fixed arbitrary command execution via backquote characters, related to mailboxes command associated with automatic subscription (bnc#1101573) - CVE-2018-14358: Fixed stack-based buffer overflow for FETCH response with long RFC822.SIZE field (bnc#1101571) - CVE-2018-14359: Fixed buffer overflow via base64 data (bnc#1101570) - CVE-2018-14360: Fixed stack-based buffer overflow because of incorrect sscanf usage in nntp_add_group in newsrc.c (bnc#1101569) - CVE-2018-14361: Fixed an code flow issue in nntp.c, which would proceed even if memory allocation failed for messages data (bnc#1101568) - CVE-2018-14362: Fixed unsafe interaction with message-cache pathnames in pop.c (bnc#1101567) OBS-URL: https://build.opensuse.org/request/show/623626 OBS-URL: https://build.opensuse.org/package/show/server:mail/neomutt?expand=0&rev=17 --- neomutt.changes | 35 ++++++++++++++++++++++++++++++++--- 1 file changed, 32 insertions(+), 3 deletions(-) diff --git a/neomutt.changes b/neomutt.changes index 823db56..4979a34 100644 --- a/neomutt.changes +++ b/neomutt.changes @@ -3,9 +3,38 @@ Tue Jul 17 09:26:21 UTC 2018 - kbabioch@suse.com - Updated to 20180716 * Feature: function - * Lots of bug fixes - * fix for bsc#1101428: code injection and a couple path traversal - vulnerabilities + * Lots of bug fixes and vulnerability fixes: + - CVE-2018-14349: Fixed mishandling of NO response without message in + imap/command.c (bnc#1101589) + - CVE-2018-14350: Fixed stack-based buffer overflow for FETCH response with + long INTERNALDATE field in imap/message.c (bnc#1101588) + - CVE-2018-14351: Fixed mishandling of a long IMAP status mailbox literal + count size in imap/command.c (bnc#1101583) + - CVE-2018-14352: Fixed stack-based buffer overflow in imap_quote_string in + imap/util.c (bnc#1101582) + - CVE-2018-14353: Fixed integer underflow in imap_quote_string in + imap/util.c (bnc#1101581) + - CVE-2018-14354: Fixed arbitrary command execution via backquote + characters, related to the mailboxes command associated with manual + subscription or unsubscription (bnc#1101578) + - CVE-2018-14355: Fixed directory traversal in mailbox name in imap/util.c + (bnc#1101577) + - CVE-2018-14356: Fixed mishandling of zero-length UID in pop.c + (bnc#1101576) + - CVE-2018-14357: Fixed arbitrary command execution via backquote + characters, related to mailboxes command associated with automatic + subscription (bnc#1101573) + - CVE-2018-14358: Fixed stack-based buffer overflow for FETCH response with + long RFC822.SIZE field (bnc#1101571) + - CVE-2018-14359: Fixed buffer overflow via base64 data (bnc#1101570) + - CVE-2018-14360: Fixed stack-based buffer overflow because of incorrect + sscanf usage in nntp_add_group in newsrc.c (bnc#1101569) + - CVE-2018-14361: Fixed an code flow issue in nntp.c, which would proceed + even if memory allocation failed for messages data (bnc#1101568) + - CVE-2018-14362: Fixed unsafe interaction with message-cache pathnames in + pop.c (bnc#1101567) + - CVE-2018-14363: Fixed unsafe interaction with cache pathnames (containing + '/') in newsrc.c (bnc#1101566) ------------------------------------------------------------------- Mon Jun 25 00:00:00 CEST 2018 - dsterba@suse.cz