Comment 1 for bug 880924

cyrus-imapd-2.2 (2.2.13p1-11) unstable; urgency=low

  * Fix CVE-2011-1926: STARTTLS plaintext command injection
    vulnerability (VU#555316)
  * Fix infinite loop in case of corrupted index files (Closes: #627078)

 -- Ondřej Surý <email address hidden> Wed, 18 May 2011 10:43:58 +0200

... synced into precise with 2.2.13p1-15; although I might shortly remove this in favour of cyrus-imapd-2.4.