Try again with the correct mailing list name.
I have two questions. First, is that perhaps too broad a stroke? Is
it reasonable to make every version of dovecot, now and in the future,
subject to such an entry? Would something more surgical be better?
Second, the reference is to a thread on a mailing list. This is just
chatter discussing whether there is a vulnerability or not. There is
no reference to an official bug report.
Hmmm. I guess I have one question and one comment, not two questions.
The entry was made almost a year ago and there have been updates since
then specifically mentioning items that might have dealt with this but
without an actual reference to a bug report we can't tell if this is
fixed or not or even if it was a problem in the first place.