> >While the facts you state are correct, the suggestion that the > >Courier-IMAP in tree is vulnerable is not. The vulnerabilities you state > >are either fixed in 3.0.5 or not relevant; see the Changelog at > >http:/www.courier-mta.org/imap. > > Indeed, I took a closer look at those vulnerabilities and they mention > the affected version being 3.0.2 and older. Though in the changelog > there are a few things that sound like bugfixes, or at least "let's > make it work better", that probably make it worth considering bumping > it to 3.0.8. But then again, possibly not ;)
Alek, you got an update to 4.1.1 before 4.0 right?
