ELSA-2019-2885

ULN >
Oracle Linux Errata repository >
ELSA-2019-2885

ELSA-2019-2885 - dovecot security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2019-09-23

Description

[1:2.0.9-22.1]
- fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte
when scanning data in quoted strings, leading to out of bounds heap
memory writes (#1752708)

Related CVEs

CVE-2019-11500

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 6 (i386)	dovecot-2.0.9-22.el6_10.1.src.rpm	1ced142244ca5d2f3202aadd44c2216d	-
	dovecot-2.0.9-22.el6_10.1.i686.rpm	466caf8000f9854e99f1285fa2a19c57	-
	dovecot-devel-2.0.9-22.el6_10.1.i686.rpm	bbecca1fee585bd5944213e0b63770bb	-
	dovecot-mysql-2.0.9-22.el6_10.1.i686.rpm	5e599b90da84fa5a0f3f765bbbc22bbd	-
	dovecot-pgsql-2.0.9-22.el6_10.1.i686.rpm	abf05a26279645549f7ca5a6c263a3c3	-
	dovecot-pigeonhole-2.0.9-22.el6_10.1.i686.rpm	31896d32d3fb32000465d3d842396229	-

Oracle Linux 6 (x86_64)	dovecot-2.0.9-22.el6_10.1.src.rpm	1ced142244ca5d2f3202aadd44c2216d	-
	dovecot-2.0.9-22.el6_10.1.i686.rpm	466caf8000f9854e99f1285fa2a19c57	-
	dovecot-2.0.9-22.el6_10.1.x86_64.rpm	0b41796fb59acb82ccf346d98ed41363	-
	dovecot-devel-2.0.9-22.el6_10.1.x86_64.rpm	54ebee8942cc3cf2ce07d78517a711f8	-
	dovecot-mysql-2.0.9-22.el6_10.1.x86_64.rpm	0f034db7bd216f774024f38e9334c405	-
	dovecot-pgsql-2.0.9-22.el6_10.1.x86_64.rpm	d080a1f76dd625639ea52036f4faa988	-
	dovecot-pigeonhole-2.0.9-22.el6_10.1.x86_64.rpm	af222a4bef5e8ccd1446ebbdda5f367c	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691