ELSA-2019-2822

ELSA-2019-2822 - dovecot security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2019-09-23

Description


[1:2.2.36-5.1]
- fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte
when scanning data in quoted strings, leading to out of bounds heap
memory writes (#1741788)


Related CVEs


CVE-2019-11500

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) dovecot-2.2.36-5.el8_0.1.src.rpm00cb86ba7bfc127191958ce46b22a0b6-
dovecot-2.2.36-5.el8_0.1.aarch64.rpm8240309975a405e0559d07b5b45f4d13-
dovecot-devel-2.2.36-5.el8_0.1.aarch64.rpm54fefa81c328e88fcf7831890764f49c-
dovecot-mysql-2.2.36-5.el8_0.1.aarch64.rpm56487b35d14156fb342ed6ec1606bd05-
dovecot-pgsql-2.2.36-5.el8_0.1.aarch64.rpmd4b5455a684f785825eb389d3c177b30-
Oracle Linux 8 (x86_64) dovecot-2.2.36-5.el8_0.1.src.rpm00cb86ba7bfc127191958ce46b22a0b6-
dovecot-2.2.36-5.el8_0.1.i686.rpm42e4f2f75de46e763b7056ca3fcdac54-
dovecot-2.2.36-5.el8_0.1.x86_64.rpme217759982557c57a9ab40b84541b337-
dovecot-devel-2.2.36-5.el8_0.1.i686.rpm9ce5e40778f2f564bab88a9b3944967f-
dovecot-devel-2.2.36-5.el8_0.1.x86_64.rpmd6b0711515444e2c9f7218a3da6c3aa2-
dovecot-mysql-2.2.36-5.el8_0.1.x86_64.rpm5ded7581566a37a60c8ebc085ee4b9c9-
dovecot-pgsql-2.2.36-5.el8_0.1.x86_64.rpm59a29db25bb3882aef8ac8c8ccde4e8a-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete