Univention Corporate Server 4.3 erratum 258 (security)

This update addresses the following issues:
* DOS via regular expression catastrophic backtracking in apop() method in
  pop3lib (CVE-2018-1060)
* DOS via regular expression backtracking in difflib.IS_LINE_JUNK method in
  difflib (CVE-2018-1061)
* Missing salt initialization in _elementtree.c module (CVE-2018-14647)
* Command injection in the shutil module (CVE-2018-1000802)