ELSA-2026-19149

ELSA-2026-19149 - dovecot security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2026-07-16

Description


[1:2.3.21-19]
- update release for rebuild

[1:2.3.21-18]
- fix CVE-2026-27858: denial of service via crafted message before authentication (RHEL-161626)
- fix CVE-2025-59032: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command (RHEL-162274)
- fix CVE-2026-27857: denial of service via specially crafted NOOP command (RHEL-161665)


Related CVEs


CVE-2025-59032
CVE-2026-27857
CVE-2026-27858

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 10 (aarch64) dovecot-2.3.21-19.el10_2.src.rpmafefe659c58a039e05da8c2e1bd787ce1e12b5935d1699a977bcf03b332975ab-ol10_aarch64_appstream
dovecot-2.3.21-19.el10_2.src.rpmafefe659c58a039e05da8c2e1bd787ce1e12b5935d1699a977bcf03b332975ab-ol10_aarch64_codeready_builder
dovecot-2.3.21-19.el10_2.aarch64.rpm6e44333b0367720bd860b514440b6689606497b37f3d2579de09ce6adf6abeeb-ol10_aarch64_appstream
dovecot-devel-2.3.21-19.el10_2.aarch64.rpm1b0118a8ec882b270374df3cb116da83f33684df393390ec1bcb18caef561402-ol10_aarch64_codeready_builder
dovecot-mysql-2.3.21-19.el10_2.aarch64.rpm3eb0fe044df276788266b727615d0d78096383689c9884e8d1aa7a5b4f717236-ol10_aarch64_appstream
dovecot-pgsql-2.3.21-19.el10_2.aarch64.rpm32aa0becddc6f04b5c1dc9e43cb0774c5d9e558407eb08ec21994bc72ffd8730-ol10_aarch64_appstream
dovecot-pigeonhole-2.3.21-19.el10_2.aarch64.rpm4a3afbb06c0ef354d0e75585926a763fa300655427d3217359ca7d2f352c500c-ol10_aarch64_appstream
Oracle Linux 10 (x86_64) dovecot-2.3.21-19.el10_2.src.rpmafefe659c58a039e05da8c2e1bd787ce1e12b5935d1699a977bcf03b332975ab-ol10_x86_64_appstream
dovecot-2.3.21-19.el10_2.src.rpmafefe659c58a039e05da8c2e1bd787ce1e12b5935d1699a977bcf03b332975ab-ol10_x86_64_codeready_builder
dovecot-2.3.21-19.el10_2.x86_64.rpme3877d535ebc98302430515ab2828f019850722878210e1ef099677274126a04-ol10_x86_64_appstream
dovecot-devel-2.3.21-19.el10_2.x86_64.rpm9c22a3ffdbaabe4eec3ea20956b68270be241dda3bf833f2dec2256e24b44d3f-ol10_x86_64_codeready_builder
dovecot-mysql-2.3.21-19.el10_2.x86_64.rpma375493ce7d97b585d784de9f75731c1ad9b4ce7eb9d5ed42eb62001fe5ce80d-ol10_x86_64_appstream
dovecot-pgsql-2.3.21-19.el10_2.x86_64.rpm395030b6b5389bdb508b56c2faa64566498b552cc61a13bc5286a4488889617f-ol10_x86_64_appstream
dovecot-pigeonhole-2.3.21-19.el10_2.x86_64.rpm63fa5c4a7b2b1f4cb3701a470527b3e15e77ede57848dc299073a335880f27e0-ol10_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete