Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted isync 1.3.0-2.2~deb10u2 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
Date: Sun, 17 Jul 2022 16:02:53 +0000
Signed by: Markus Koschany <apo@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 28 Jun 2022 15:58:18 +0200
Source: isync
Architecture: source
Version: 1.3.0-2.2~deb10u2
Distribution: buster
Urgency: medium
Maintainer: Nicolas Boullis <nboullis@debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Changes:
 isync (1.3.0-2.2~deb10u2) buster; urgency=medium
 .
   * Non-maintainer upload.
   * Fix CVE-2021-3657:
     A flaw was found in mbsync. Due to inadequate handling of extremely large
     (>=2GiB) IMAP literals, malicious or compromised IMAP servers, and
     hypothetically even external email senders, could cause several different
     buffer overflows, which could conceivably be exploited for remote code
     execution.
Checksums-Sha1:
 d6beba81a157c526b10730b3fed1cc82ffb935af 2080 isync_1.3.0-2.2~deb10u2.dsc
 b4ab5bc7a8dfd3aff206f9c427f9126f25e628b9 11748 isync_1.3.0-2.2~deb10u2.debian.tar.xz
 f8ff1af320a046af517d00af8aa414a059d93a1d 6311 isync_1.3.0-2.2~deb10u2_amd64.buildinfo
Checksums-Sha256:
 09104b1f730dd71e773426971ec46338f76466fadc24ccf99251f6af08adbd31 2080 isync_1.3.0-2.2~deb10u2.dsc
 ae8ba62874ae70335cdce54180b1677efdced8b5a36d8bbeb884f8fc526f64b9 11748 isync_1.3.0-2.2~deb10u2.debian.tar.xz
 e69ae52b42c88af463a4edab0137d6b192cbe95739702a6401dce0a206600778 6311 isync_1.3.0-2.2~deb10u2_amd64.buildinfo
Files:
 a483c4b01ffa48a4d363fbf942a0d1f9 2080 mail optional isync_1.3.0-2.2~deb10u2.dsc
 c73e975e87fdc51cad48db62577e6863 11748 mail optional isync_1.3.0-2.2~deb10u2.debian.tar.xz
 db6001f84c4e5405ee08458870d0ddf4 6311 mail optional isync_1.3.0-2.2~deb10u2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=3tHl
-----END PGP SIGNATURE-----

News for package isync