-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Hi all, I've just tagged and uploaded version 3.2.2. This is a security release. All users of DBMail-3.2 should test this release and upgrade as soon as possible. Users of DBMail-3.1 are *not* affected. A vulnerability was discovered in the CRAM-MD5 code which can give users access to any other email account - as long as they know the username of the other account. Apart from fixing this problem no other changes have occurred since 3.2.1. Download: http://dbmail.org/download/3.2/dbmail-3.2.2.tar.gz Changes: http://git.dbmail.eu/paul/dbmail/log/?h=dbmail_3_2&id=v3.2.2 - -- ________________________________________________________________ Paul J Stevens pjstevns @ gmail, twitter, github, linkedin www.nfg.nl/i...@nfg.nl/+31.85.877.99.97 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iEYEARECAAYFAlSf274ACgkQ8iITvBH4zTEOjQCguqbVyoanNzbLxk2k6vHzEpFa ZkQAnR8B3i2MAnaQsdR3UkNzMavzYpAf =8PQ2 -----END PGP SIGNATURE----- _______________________________________________ DBmail mailing list DBmail@dbmail.org http://mailman.fastxs.nl/cgi-bin/mailman/listinfo/dbmail
