Oval Definition:oval:org.opensuse.security:def:69678
Revision Date:2021-06-22Version:1
Title:Security update for dovecot23 (Important)
Description:

This update for dovecot23 fixes the following issues:

- CVE-2021-29157: Local attacker can login as any user and access their emails (bsc#1187418) - CVE-2021-33515: Attacker can potentially steal user credentials and mails (bsc#1187419)
Family:unixClass:patch
Status:Reference(s):1144902
1148539
1152143
1154289
1154598
1187418
1187419
CVE-2014-9488
CVE-2019-10218
CVE-2019-14833
CVE-2019-14847
CVE-2021-29157
CVE-2021-33515
SUSE-SU-2019:2866-1
SUSE-SU-2021:2124-1
Platform(s):SUSE Enterprise Storage 6
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP1-BCL
Product(s):
Definition Synopsis
  • SUSE Enterprise Storage 6 is installed
  • AND Package Information
  • samba-4.9.5+git.210.ab0549acb05-3.14 is installed
  • OR samba-ceph-4.9.5+git.210.ab0549acb05-3.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND less-530-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15 SP1-BCL is installed
  • AND Package Information
  • dovecot23-2.3.11.3-24.1 is installed
  • OR dovecot23-backend-mysql-2.3.11.3-24.1 is installed
  • OR dovecot23-backend-pgsql-2.3.11.3-24.1 is installed
  • OR dovecot23-backend-sqlite-2.3.11.3-24.1 is installed
  • OR dovecot23-devel-2.3.11.3-24.1 is installed
  • OR dovecot23-fts-2.3.11.3-24.1 is installed
  • OR dovecot23-fts-lucene-2.3.11.3-24.1 is installed
  • OR dovecot23-fts-solr-2.3.11.3-24.1 is installed
  • OR dovecot23-fts-squat-2.3.11.3-24.1 is installed
    • BACK