[ubuntu/resolute-proposed] dovecot 1:2.4.2+dfsg1-3ubuntu1 (Accepted)

Jonas Jelten jj at ubuntu.com
Tue Feb 10 14:42:16 UTC 2026 

dovecot (1:2.4.2+dfsg1-3ubuntu1) resolute; urgency=medium

  * Merge with Debian unstable (LP: #2126007). Remaining changes:
    - d/rules: switch to -O2 (from -O3) on ppc64el to fix FTBFS (LP #2121250)
  * Dropped changes:
    - d/p/fips-pbkdf2-fix: update PBKDF2 salt length to be FIPS 140-3 compliant
      [upstream in 2.4.2 dab49bf1222 and 5ebc1e3e560]
    - d/rules: set mbranch-protection=bti to avoid ftbfs
      [fixed in libunwind-1.8.2]
    - d/p/CVE-2025-30189: fix auth by AUTH_CACHE_KEY_USER
      [upstream in 2.4.2]

dovecot (1:2.4.2+dfsg1-3) unstable; urgency=medium

  * [986f666] Correctly handle signed 32-bit time_t types (Closes: #1124541)
  * [e2498a3] import upstream fixes to regex handling with libpcre
    (Closes: #1121519)
  * [c613433] refresh debian/copyright
  * [79dcac4] refresh lintian overrides
  * [67a151e] d/control: drop Priority fields per policy 4.7.3
  * [7c03ad9] d/control: bump standards-version to 4.7.3

dovecot (1:2.4.2+dfsg1-2) unstable; urgency=medium

  * [e34626c] import upstream fix for possible crash in ldap userdb
    (Closes: #1121000)
  * [8d95d15] d/control: add libpcre2-dev to build-deps (Closes: #1121193)
  * [7b23f06] Work around test failure on big-endian architectures

dovecot (1:2.4.2+dfsg1-1) unstable; urgency=medium

  * [812f0ea] d/control: update time-daemon Suggests (Closes: #1118232)
  * [658bbd5] Revert "d/watch: handle suffixes in upstream release filenames"
  * [7ada151] New upstream version 2.4.2+dfsg1
  * [5e41d98] Refresh or remove patches as needed
  * [ff4b25e] Fix detection of krb5 CFLAGS
  * [975f35c] Fix a compile failure on 32-bit systems
  * [751bdb7] exclude developer scripts from package

dovecot (1:2.4.1+dfsg1-9) unstable; urgency=medium

  * [58328b9] Add postgres userdb/passdb autopkgtest coverage
  * [f5ce82f] Add mariadb userdb/passdb autopkgtest coverage
  * [3f9b9ae] Apply the rest of the cross-build patch (Closes: #983791)
  * [33dcea2] lib-index: Fix storing cache fields' last_used with 32bit big
    endian CPUs (Closes: #1107608)

dovecot (1:2.4.1+dfsg1-8) unstable; urgency=medium

  * [57a6237] d/control: Add libcrypt-dev to Build-Depends (Closes: #1106915)
  * [9fc8885] import upstream patch for improperly terminated
    auth_oauth2_post_setting_defines (Closes: #1116328)
  * [c624fe6] lib-sieve/sieve-script.c: sieve_script_create_common: Correctly
    handle errors. (Closes: #1116070)
  * [769dd9c] d/rules: Pass the current C compiler krb5-config.mit
    (Closes: #983791)

dovecot (1:2.4.1+dfsg1-7) unstable; urgency=medium

  * [ebfdfa6] [PATCH] auth: Use AUTH_CACHE_KEY_USER instead of
    per-database constants (CVE-2025-30189) (Closes: #1115474)
  * [4a9e872] Clean up a few typos in default/example config (Closes: #1112667)
  * [db01b1f] Ensure default lmtpd auth_username_format matches the global value
    (Closes: #1111469)

dovecot (1:2.4.1+dfsg1-6) unstable; urgency=medium

  * [8c6ba88] Fix LDAP SASL auth support (Closes: #1106784)
  * [fac9131] Avoid -fstack-clash-protection on hppa architecture
    (Closes: #1107609)
  * [071beb5] d/control: update Uploaders to reflect the current reality

Date: Tue, 09 Feb 2026 09:40:39 +0100
Changed-By: Jonas Jelten <jj at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/dovecot/1:2.4.2+dfsg1-3ubuntu1
-------------- next part --------------
Format: 1.8
Date: Tue, 09 Feb 2026 09:40:39 +0100
Source: dovecot
Built-For-Profiles: noudeb
Architecture: source
Version: 1:2.4.2+dfsg1-3ubuntu1
Distribution: resolute
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jonas Jelten <jj at ubuntu.com>
Closes: 983791 1106784 1106915 1107608 1107609 1111469 1112667 1115474 1116070 1116328 1118232 1121000 1121193 1121519 1124541
Launchpad-Bugs-Fixed: 2126007
Changes:
 dovecot (1:2.4.2+dfsg1-3ubuntu1) resolute; urgency=medium
 .
   * Merge with Debian unstable (LP: #2126007). Remaining changes:
     - d/rules: switch to -O2 (from -O3) on ppc64el to fix FTBFS (LP #2121250)
   * Dropped changes:
     - d/p/fips-pbkdf2-fix: update PBKDF2 salt length to be FIPS 140-3 compliant
       [upstream in 2.4.2 dab49bf1222 and 5ebc1e3e560]
     - d/rules: set mbranch-protection=bti to avoid ftbfs
       [fixed in libunwind-1.8.2]
     - d/p/CVE-2025-30189: fix auth by AUTH_CACHE_KEY_USER
       [upstream in 2.4.2]
 .
 dovecot (1:2.4.2+dfsg1-3) unstable; urgency=medium
 .
   * [986f666] Correctly handle signed 32-bit time_t types (Closes: #1124541)
   * [e2498a3] import upstream fixes to regex handling with libpcre
     (Closes: #1121519)
   * [c613433] refresh debian/copyright
   * [79dcac4] refresh lintian overrides
   * [67a151e] d/control: drop Priority fields per policy 4.7.3
   * [7c03ad9] d/control: bump standards-version to 4.7.3
 .
 dovecot (1:2.4.2+dfsg1-2) unstable; urgency=medium
 .
   * [e34626c] import upstream fix for possible crash in ldap userdb
     (Closes: #1121000)
   * [8d95d15] d/control: add libpcre2-dev to build-deps (Closes: #1121193)
   * [7b23f06] Work around test failure on big-endian architectures
 .
 dovecot (1:2.4.2+dfsg1-1) unstable; urgency=medium
 .
   * [812f0ea] d/control: update time-daemon Suggests (Closes: #1118232)
   * [658bbd5] Revert "d/watch: handle suffixes in upstream release filenames"
   * [7ada151] New upstream version 2.4.2+dfsg1
   * [5e41d98] Refresh or remove patches as needed
   * [ff4b25e] Fix detection of krb5 CFLAGS
   * [975f35c] Fix a compile failure on 32-bit systems
   * [751bdb7] exclude developer scripts from package
 .
 dovecot (1:2.4.1+dfsg1-9) unstable; urgency=medium
 .
   * [58328b9] Add postgres userdb/passdb autopkgtest coverage
   * [f5ce82f] Add mariadb userdb/passdb autopkgtest coverage
   * [3f9b9ae] Apply the rest of the cross-build patch (Closes: #983791)
   * [33dcea2] lib-index: Fix storing cache fields' last_used with 32bit big
     endian CPUs (Closes: #1107608)
 .
 dovecot (1:2.4.1+dfsg1-8) unstable; urgency=medium
 .
   * [57a6237] d/control: Add libcrypt-dev to Build-Depends (Closes: #1106915)
   * [9fc8885] import upstream patch for improperly terminated
     auth_oauth2_post_setting_defines (Closes: #1116328)
   * [c624fe6] lib-sieve/sieve-script.c: sieve_script_create_common: Correctly
     handle errors. (Closes: #1116070)
   * [769dd9c] d/rules: Pass the current C compiler krb5-config.mit
     (Closes: #983791)
 .
 dovecot (1:2.4.1+dfsg1-7) unstable; urgency=medium
 .
   * [ebfdfa6] [PATCH] auth: Use AUTH_CACHE_KEY_USER instead of
     per-database constants (CVE-2025-30189) (Closes: #1115474)
   * [4a9e872] Clean up a few typos in default/example config (Closes: #1112667)
   * [db01b1f] Ensure default lmtpd auth_username_format matches the global value
     (Closes: #1111469)
 .
 dovecot (1:2.4.1+dfsg1-6) unstable; urgency=medium
 .
   * [8c6ba88] Fix LDAP SASL auth support (Closes: #1106784)
   * [fac9131] Avoid -fstack-clash-protection on hppa architecture
     (Closes: #1107609)
   * [071beb5] d/control: update Uploaders to reflect the current reality
Checksums-Sha1:
 b3585a81e1a0577ea05aa48cef1fe7462964ccd7 3258 dovecot_2.4.2+dfsg1-3ubuntu1.dsc
 e438c5bc1f19e9884a63bacb05f4692fac496f0f 1803683 dovecot_2.4.2+dfsg1.orig-pigeonhole.tar.gz
 dbf06ceeb7e1659bac26bedd8c7d3d5f26004f4e 7807240 dovecot_2.4.2+dfsg1.orig.tar.gz
 7bf175f6c27eecfb1f13f4b72b37ff37394e7238 88776 dovecot_2.4.2+dfsg1-3ubuntu1.debian.tar.xz
 54431b654a3db5ba4e7d641e36d258432d3b4537 6483 dovecot_2.4.2+dfsg1-3ubuntu1_source.buildinfo
Checksums-Sha256:
 5d6f9005e4d8a58aa70a960e59f7092cc5a04c123f9d6f1828d49cc6d752b159 3258 dovecot_2.4.2+dfsg1-3ubuntu1.dsc
 98545deda48c9da9956c76de209a3d270e7efbb539521767f91c2daf24b6f133 1803683 dovecot_2.4.2+dfsg1.orig-pigeonhole.tar.gz
 2cd62e4d22b9fc1c80bd38649739950f0dbda34fbc3e62624fb6842264e93c6e 7807240 dovecot_2.4.2+dfsg1.orig.tar.gz
 f65522b9e96c715011b320915022c949fbaf66df90dbcf92549c7cd24f8b8885 88776 dovecot_2.4.2+dfsg1-3ubuntu1.debian.tar.xz
 f6a9931cc03b7fa68b559a75f4271644c11120e2193c3d57fa4d693330f84ff6 6483 dovecot_2.4.2+dfsg1-3ubuntu1_source.buildinfo
Files:
 7b1f368df71aaec82a1a6e7a5d06c097 3258 mail optional dovecot_2.4.2+dfsg1-3ubuntu1.dsc
 a0b25d2bda1b9869f351c9ca3f1c5bb6 1803683 mail optional dovecot_2.4.2+dfsg1.orig-pigeonhole.tar.gz
 5c32d194129424b2dd92b864e4c8e16a 7807240 mail optional dovecot_2.4.2+dfsg1.orig.tar.gz
 b0f4f6ec2cb64927da5fa39e83d9e650 88776 mail optional dovecot_2.4.2+dfsg1-3ubuntu1.debian.tar.xz
 5b6f758a973815c3b4f9cac0c894d2c6 6483 mail optional dovecot_2.4.2+dfsg1-3ubuntu1_source.buildinfo
Original-Maintainer: Dovecot Maintainers <dovecot at packages.debian.org>
Vcs-Git: https://git.launchpad.net/~jj/ubuntu/+source/dovecot
Vcs-Git-Commit: d2a66ee7c0d8f47d6809dfbef0dfda61f7d4c0cf
Vcs-Git-Ref: refs/heads/lp2126007-merge-resolute

More information about the Resolute-changes mailing list