Recommended update for dovecot22
| Announcement ID: | SUSE-RU-2017:1713-1 |
| Rating: | moderate |
| References: | #1044110 |
| Affected Products: |
An update that has one recommended fix can now be installed.
Description:
This update provides Dovecot 2.2.30.2, which brings many fixes and
enhancements:
- Multiple failed authentications within short time caused crashes.
- Use timing safe comparisons for everything related to passwords.
- Master process now sends SIGQUIT to all running children at shutdown,
which instructs them to close all the socket listeners immediately.
Restarting Dovecot should no longer fail due to some processes keeping
the listeners open for a long time.
- Add passdb { mechanisms=none } to match separate passdb lookup.
- Add passdb { username_filter } to use passdb only if user matches the
filter.
- Add dsync_commit_msgs_interval setting. It attempts to commit the
transaction after saving this many new messages.
- Support imapc_features=search without ESEARCH extension.
- Add imapc_features=fetch-bodystructure to pass through remote server's
FETCH BODY and BODYSTRUCTURE.
- Add quota=imapc backend to use GETQUOTA/GETQUOTAROOT on the remote
server.
- Add allow_invalid_cert and ssl_ca_file parameters.
- If dovecot.index.cache corruption is detected, reset only the one
corrupted mail instead
of the whole file.
- Add "firstsaved" field to doveadm mailbox status.
- Add old host's up/down and vhost count as parameters to
director_flush_socket.
- More fixes to automatically fix corruption in dovecot.list.index.
- Fix support for dsync_features=empty-header-workaround.
- IMAP NOTIFY wasn't working for non-INBOX if IMAP client hadn't enabled
modseq tracking via CONDSTORE/QRESYNC.
- Fix fts-lucene it to work again with mbox format.
- Some internal error messages may have contained garbage in v2.2.29.
- Re-encrypt when copying/moving mails and per-mailbox keys are used,
otherwise the copied mails can't be opened.
Patch Instructions:
To install this SUSE Recommended Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Software Development Kit 12-SP2:
zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1064=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2:
zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1064=1 - SUSE Linux Enterprise Server 12-SP2:
zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1064=1
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64):
- dovecot22-debuginfo-2.2.30.2-14.2
- dovecot22-debugsource-2.2.30.2-14.2
- dovecot22-devel-2.2.30.2-14.2
- SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64):
- dovecot22-2.2.30.2-14.2
- dovecot22-backend-mysql-2.2.30.2-14.2
- dovecot22-backend-mysql-debuginfo-2.2.30.2-14.2
- dovecot22-backend-pgsql-2.2.30.2-14.2
- dovecot22-backend-pgsql-debuginfo-2.2.30.2-14.2
- dovecot22-backend-sqlite-2.2.30.2-14.2
- dovecot22-backend-sqlite-debuginfo-2.2.30.2-14.2
- dovecot22-debuginfo-2.2.30.2-14.2
- dovecot22-debugsource-2.2.30.2-14.2
- SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le x86_64):
- dovecot22-2.2.30.2-14.2
- dovecot22-backend-mysql-2.2.30.2-14.2
- dovecot22-backend-mysql-debuginfo-2.2.30.2-14.2
- dovecot22-backend-pgsql-2.2.30.2-14.2
- dovecot22-backend-pgsql-debuginfo-2.2.30.2-14.2
- dovecot22-backend-sqlite-2.2.30.2-14.2
- dovecot22-backend-sqlite-debuginfo-2.2.30.2-14.2
- dovecot22-debuginfo-2.2.30.2-14.2
- dovecot22-debugsource-2.2.30.2-14.2