Oval Definition:oval:org.opensuse.security:def:69877
Revision Date:2021-06-22Version:1
Title:Security update for dovecot23 (Important)
Description:

This update for dovecot23 fixes the following issues:

- CVE-2021-29157: Local attacker can login as any user and access their emails (bsc#1187418) - CVE-2021-33515: Attacker can potentially steal user credentials and mails (bsc#1187419)
Family:unixClass:patch
Status:Reference(s):1187418
1187419
CVE-2013-2131
CVE-2014-3675
CVE-2014-3676
CVE-2014-3677
CVE-2021-29157
CVE-2021-33515
SUSE-SU-2021:2124-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP1-LTSS
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • librrd8-1.7.0-4 is installed
  • OR perl-rrdtool-1.7.0-4 is installed
  • OR rrdtool-1.7.0-4 is installed
  • OR rrdtool-devel-1.7.0-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15 SP1-LTSS is installed
  • AND Package Information
  • dovecot23-2.3.11.3-24.1 is installed
  • OR dovecot23-backend-mysql-2.3.11.3-24.1 is installed
  • OR dovecot23-backend-pgsql-2.3.11.3-24.1 is installed
  • OR dovecot23-backend-sqlite-2.3.11.3-24.1 is installed
  • OR dovecot23-devel-2.3.11.3-24.1 is installed
  • OR dovecot23-fts-2.3.11.3-24.1 is installed
  • OR dovecot23-fts-lucene-2.3.11.3-24.1 is installed
  • OR dovecot23-fts-solr-2.3.11.3-24.1 is installed
  • OR dovecot23-fts-squat-2.3.11.3-24.1 is installed
    • BACK