ELSA-2019-2822

ULN >
Oracle Linux Errata repository >
ELSA-2019-2822

ELSA-2019-2822 - dovecot security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2019-09-23

Description

[1:2.2.36-5.1]
- fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte
when scanning data in quoted strings, leading to out of bounds heap
memory writes (#1741788)

Related CVEs

CVE-2019-11500

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 8 (aarch64)	dovecot-2.2.36-5.el8_0.1.src.rpm	00cb86ba7bfc127191958ce46b22a0b6	-
	dovecot-2.2.36-5.el8_0.1.aarch64.rpm	8240309975a405e0559d07b5b45f4d13	-
	dovecot-devel-2.2.36-5.el8_0.1.aarch64.rpm	54fefa81c328e88fcf7831890764f49c	-
	dovecot-mysql-2.2.36-5.el8_0.1.aarch64.rpm	56487b35d14156fb342ed6ec1606bd05	-
	dovecot-pgsql-2.2.36-5.el8_0.1.aarch64.rpm	d4b5455a684f785825eb389d3c177b30	-

Oracle Linux 8 (x86_64)	dovecot-2.2.36-5.el8_0.1.src.rpm	00cb86ba7bfc127191958ce46b22a0b6	-
	dovecot-2.2.36-5.el8_0.1.i686.rpm	42e4f2f75de46e763b7056ca3fcdac54	-
	dovecot-2.2.36-5.el8_0.1.x86_64.rpm	e217759982557c57a9ab40b84541b337	-
	dovecot-devel-2.2.36-5.el8_0.1.i686.rpm	9ce5e40778f2f564bab88a9b3944967f	-
	dovecot-devel-2.2.36-5.el8_0.1.x86_64.rpm	d6b0711515444e2c9f7218a3da6c3aa2	-
	dovecot-mysql-2.2.36-5.el8_0.1.x86_64.rpm	5ded7581566a37a60c8ebc085ee4b9c9	-
	dovecot-pgsql-2.2.36-5.el8_0.1.x86_64.rpm	59a29db25bb3882aef8ac8c8ccde4e8a	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691