ELSA-2024-6529

ULN >
Oracle Linux Errata repository >
ELSA-2024-6529

ELSA-2024-6529 - dovecot security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2024-09-10

Description

[1:2.3.16-11.1]
- fix CVE-2024-23184: using a large number of address headers may trigger a denial of service (RHEL-55211)
- fix CVE-2024-23185: very large headers can cause resource exhaustion when parsing message (RHEL-55225)

Related CVEs

CVE-2024-23185

CVE-2024-23184

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	dovecot-2.3.16-11.el9_4.1.src.rpm	050b67aaf345364a8e77c7b58502016738e97bb78ad735b97e3af1c5d4199250	-	ol9_aarch64_appstream
	dovecot-2.3.16-11.el9_4.1.src.rpm	050b67aaf345364a8e77c7b58502016738e97bb78ad735b97e3af1c5d4199250	-	ol9_aarch64_codeready_builder
	dovecot-2.3.16-11.el9_4.1.aarch64.rpm	c09ed5acd5251ecdf978a625dda0750bd2b63578f78b954692b85ccc6d618b7b	-	ol9_aarch64_appstream
	dovecot-devel-2.3.16-11.el9_4.1.aarch64.rpm	9d9232e0ed808b149785bdc0745931b1f39a14d400c4a95b4c4f3a3198d9537d	-	ol9_aarch64_codeready_builder
	dovecot-mysql-2.3.16-11.el9_4.1.aarch64.rpm	91c73a3c7916d23f898daa7bb8126d87c17ae01854148c4fc84c8a093cda3ac2	-	ol9_aarch64_appstream
	dovecot-pgsql-2.3.16-11.el9_4.1.aarch64.rpm	dafc1bd319b18d2e33e8cc93d6e6a5d112174b0a13769dad6e2de9b3d81c8df4	-	ol9_aarch64_appstream
	dovecot-pigeonhole-2.3.16-11.el9_4.1.aarch64.rpm	f583a44dd2fb74b3d68c2b2f9d85c8bfbe179a796e341a871bb999a8d96d022d	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	dovecot-2.3.16-11.el9_4.1.src.rpm	050b67aaf345364a8e77c7b58502016738e97bb78ad735b97e3af1c5d4199250	-	ol9_x86_64_appstream
	dovecot-2.3.16-11.el9_4.1.src.rpm	050b67aaf345364a8e77c7b58502016738e97bb78ad735b97e3af1c5d4199250	-	ol9_x86_64_codeready_builder
	dovecot-2.3.16-11.el9_4.1.i686.rpm	10936063323b68f33906e76ca68311696a07302d6bf61905310b7e1d99158ecc	-	ol9_x86_64_codeready_builder
	dovecot-2.3.16-11.el9_4.1.x86_64.rpm	a59e32f66eab2d25d1d590ec4ec9c2f82fdbe43a1ed9fcf3e96e1eda67aaadac	-	ol9_x86_64_appstream
	dovecot-devel-2.3.16-11.el9_4.1.i686.rpm	b0974b1657f62d10ccfef8e7d67b8091712d182a558b5b6f00482f68f98515db	-	ol9_x86_64_codeready_builder
	dovecot-devel-2.3.16-11.el9_4.1.x86_64.rpm	dfc22de21cebca1d7f4ab949c121426b61ebf115ee925af3ea1c0b8eb3e68d86	-	ol9_x86_64_codeready_builder
	dovecot-mysql-2.3.16-11.el9_4.1.x86_64.rpm	69804b430a5c6e0d55419691fbfb9fd355a070fe3ae3d9c05bfdbb5eb2db9f81	-	ol9_x86_64_appstream
	dovecot-pgsql-2.3.16-11.el9_4.1.x86_64.rpm	b1f33bc0fd36f917f0914d2b4a7a1333f4094dcb13e23b432c7a77ea4e397ec9	-	ol9_x86_64_appstream
	dovecot-pigeonhole-2.3.16-11.el9_4.1.x86_64.rpm	813e9e0534efc894ff3b356acec455939eec7d6e43de20872c460c3cd44fbe98	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691