Oval Definition:oval:org.opensuse.security:def:110034
Revision Date:2019-10-07Version:1
Title:Security update for dovecot23 (Important)
Description:

This update for dovecot23 fixes the following issues:

- CVE-2019-11500: Fixed the NUL byte handling in IMAP and ManageSieve protocol parsers. (bsc#1145559) - CVE-2019-11499: Fixed a vulnerability where the submission-login would crash over a TLS secured channel (bsc#1133625). - CVE-2019-11494: Fixed a denial of service if the authentication is aborted by disconnecting (bsc#1133624).

This update was imported from the SUSE:SLE-15-SP1:Update update project.
Family:unixClass:patch
Status:Reference(s):1133624
1133625
1145559
CVE-2019-11494
CVE-2019-11499
CVE-2019-11500
openSUSE-SU-2019:2281-1
Platform(s):openSUSE Leap 15.1
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • dovecot23-2.3.3-lp151.2.6.1 is installed
  • OR dovecot23-backend-mysql-2.3.3-lp151.2.6.1 is installed
  • OR dovecot23-backend-pgsql-2.3.3-lp151.2.6.1 is installed
  • OR dovecot23-backend-sqlite-2.3.3-lp151.2.6.1 is installed
  • OR dovecot23-devel-2.3.3-lp151.2.6.1 is installed
  • OR dovecot23-fts-2.3.3-lp151.2.6.1 is installed
  • OR dovecot23-fts-lucene-2.3.3-lp151.2.6.1 is installed
  • OR dovecot23-fts-solr-2.3.3-lp151.2.6.1 is installed
  • OR dovecot23-fts-squat-2.3.3-lp151.2.6.1 is installed
    • BACK