ELSA-2024-6973

ULN >
Oracle Linux Errata repository >
ELSA-2024-6973

ELSA-2024-6973 - dovecot security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2024-09-24

Description

[1:2.3.16-6]
- fix CVE-2024-23185: very large headers can cause resource exhaustion when parsing message (RHEL-55219)
- fix CVE-2024-23184: using a large number of address headers may trigger a denial of service (RHEL-55206)

Related CVEs

CVE-2024-23184

CVE-2024-23185

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	dovecot-2.3.16-6.el8_10.src.rpm	db8e366bbe01eada9ce5e4feedbf6e45eeeb03d03f880821bbedb215245760c4	-	ol8_aarch64_appstream
	dovecot-2.3.16-6.el8_10.src.rpm	db8e366bbe01eada9ce5e4feedbf6e45eeeb03d03f880821bbedb215245760c4	-	ol8_aarch64_codeready_builder
	dovecot-2.3.16-6.el8_10.aarch64.rpm	d76a255500bc2d658bd79a5b921f81e366c19611a3c716fbcc2d7255d902a0f8	-	ol8_aarch64_appstream
	dovecot-devel-2.3.16-6.el8_10.aarch64.rpm	49e88374ee75a4796c4ce360b4038015206bf9424cde97227f724f7599a2c29a	-	ol8_aarch64_codeready_builder
	dovecot-mysql-2.3.16-6.el8_10.aarch64.rpm	ba2063dbf838151a388dae3a121c5c2786d4a9a371523c83130f82b69f1a4039	-	ol8_aarch64_appstream
	dovecot-pgsql-2.3.16-6.el8_10.aarch64.rpm	69610fde779853c36ff3003ace9be07161b37f12ed93de7d51f699b600ee00aa	-	ol8_aarch64_appstream
	dovecot-pigeonhole-2.3.16-6.el8_10.aarch64.rpm	2b282d097cc1aa3b9224ad32ed4406fa19cb0fed45bd992fdbb9be12da93ecb7	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	dovecot-2.3.16-6.el8_10.src.rpm	db8e366bbe01eada9ce5e4feedbf6e45eeeb03d03f880821bbedb215245760c4	-	ol8_x86_64_appstream
	dovecot-2.3.16-6.el8_10.src.rpm	db8e366bbe01eada9ce5e4feedbf6e45eeeb03d03f880821bbedb215245760c4	-	ol8_x86_64_codeready_builder
	dovecot-2.3.16-6.el8_10.i686.rpm	b51f1f578a4eded576d09bcc97862005cd0f38442c7a3b50eb848b4d5df4a907	-	ol8_x86_64_codeready_builder
	dovecot-2.3.16-6.el8_10.x86_64.rpm	5b5750bfbd1a3e7fbf8f5ed2d201395e2247896897f176376b1938c0fc97a4e8	-	ol8_x86_64_appstream
	dovecot-devel-2.3.16-6.el8_10.i686.rpm	e3b46a5d47d05669954c578e64fe40ca2b0e2e4526131620948984bb8c7a4354	-	ol8_x86_64_codeready_builder
	dovecot-devel-2.3.16-6.el8_10.x86_64.rpm	a538f45754b0c9ff18de3bb4b4961dd43e5567515808d6b053dc72d1c1b47d02	-	ol8_x86_64_codeready_builder
	dovecot-mysql-2.3.16-6.el8_10.x86_64.rpm	c2838156b74a9c69e8b8cc9c5beaff5bbc343f469de2fd07e0a1e3344287c439	-	ol8_x86_64_appstream
	dovecot-pgsql-2.3.16-6.el8_10.x86_64.rpm	8736d6431a23f33661c6e86a336df60d4d4b17b60263fb338f75bc4930eacbdc	-	ol8_x86_64_appstream
	dovecot-pigeonhole-2.3.16-6.el8_10.x86_64.rpm	c7065bccb9aa2f010bea0bbf1214f6b0613748ff10d28b6a8f30b1896117f754	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691