Oval Definition:	oval:org.mitre.oval:def:21764
Revision Date: 2014-05-26 Version: 20 Title: ELSA-2009:0205: dovecot security and bug fix update (Low) Description: dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable permissions for dovecot.conf, which allows local users to obtain the ssl_key_password parameter value. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2008-4577 CVE-2008-4870 ELSA-2009:0205-02 Platform(s): Oracle Linux 5 Product(s): dovecot Definition Synopsis Oracle Linux 5.x AND dovecot is earlier than 0:1.0.7-7.el5
BACK