From 8da0aadb9c43dc02aa20f7d3cd34f2cdf88fbe95 Mon Sep 17 00:00:00 2001
From: Patrick J Volkerding <volkerdi@slackware.com>
Date: Mon, 21 Jun 2021 18:26:35 +0000
Subject: Mon Jun 21 18:26:35 UTC 2021

kde/kid3-3.8.7-x86_64-1.txz:  Upgraded.
l/openexr-2.5.7-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.15-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  Dovecot did not correctly escape kid and azp fields in JWT tokens. This may
  be used to supply attacker controlled keys to validate tokens, if attacker
  has local access.
  On-path attacker could have injected plaintext commands before STARTTLS
  negotiation that would be executed after STARTTLS finished with the client.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29157
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33515
  (* Security fix *)
x/libva-2.12.0-x86_64-1.txz:  Upgraded.
---
 source/n/dovecot/dovecot.SlackBuild | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'source/n')

diff --git a/source/n/dovecot/dovecot.SlackBuild b/source/n/dovecot/dovecot.SlackBuild
index 7993a195e..1c5dfaff9 100755
--- a/source/n/dovecot/dovecot.SlackBuild
+++ b/source/n/dovecot/dovecot.SlackBuild
@@ -26,7 +26,7 @@ cd $(dirname $0) ; CWD=$(pwd)
 
 PKGNAM=dovecot
 VERSION=${VERSION:-$(echo $PKGNAM-*.tar.?z | rev | cut -f 3- -d . | cut -f 1 -d - | rev)}
-BUILD=${BUILD:-2}
+BUILD=${BUILD:-1}
 
 if [ -z "$ARCH" ]; then
   case "$( uname -m )" in
-- 
cgit v1.2.3