ELSA-2019-2885

ELSA-2019-2885 - dovecot security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2019-09-23

Description


[1:2.0.9-22.1]
- fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte
when scanning data in quoted strings, leading to out of bounds heap
memory writes (#1752708)


Related CVEs


CVE-2019-11500

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) dovecot-2.0.9-22.el6_10.1.src.rpm1ced142244ca5d2f3202aadd44c2216d-
dovecot-2.0.9-22.el6_10.1.i686.rpm466caf8000f9854e99f1285fa2a19c57-
dovecot-devel-2.0.9-22.el6_10.1.i686.rpmbbecca1fee585bd5944213e0b63770bb-
dovecot-mysql-2.0.9-22.el6_10.1.i686.rpm5e599b90da84fa5a0f3f765bbbc22bbd-
dovecot-pgsql-2.0.9-22.el6_10.1.i686.rpmabf05a26279645549f7ca5a6c263a3c3-
dovecot-pigeonhole-2.0.9-22.el6_10.1.i686.rpm31896d32d3fb32000465d3d842396229-
Oracle Linux 6 (x86_64) dovecot-2.0.9-22.el6_10.1.src.rpm1ced142244ca5d2f3202aadd44c2216d-
dovecot-2.0.9-22.el6_10.1.i686.rpm466caf8000f9854e99f1285fa2a19c57-
dovecot-2.0.9-22.el6_10.1.x86_64.rpm0b41796fb59acb82ccf346d98ed41363-
dovecot-devel-2.0.9-22.el6_10.1.x86_64.rpm54ebee8942cc3cf2ce07d78517a711f8-
dovecot-mysql-2.0.9-22.el6_10.1.x86_64.rpm0f034db7bd216f774024f38e9334c405-
dovecot-pgsql-2.0.9-22.el6_10.1.x86_64.rpmd080a1f76dd625639ea52036f4faa988-
dovecot-pigeonhole-2.0.9-22.el6_10.1.x86_64.rpmaf222a4bef5e8ccd1446ebbdda5f367c-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete