Oval Definition:	oval:org.mitre.oval:def:22086
Revision Date: 2014-05-26 Version: 28 Title: ELSA-2008:0297: dovecot security and bug fix update (Low) Description: Dovecot before 1.0.11, when configured to use mail_extra_groups to allow Dovecot to create dotlocks in /var/mail, might allow local users to read sensitive mail files for other users, or modify files or directories that are writable by group, via a symlink attack. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2007-2231 CVE-2007-4211 CVE-2007-6598 CVE-2008-1199 ELSA-2008:0297-02 Platform(s): Oracle Linux 5 Product(s): dovecot Definition Synopsis Oracle Linux 5.x AND dovecot is earlier than 0:1.0.7-2.el5
BACK