Revision Date: | 2019-10-02 | Version: | 1 |
Title: | Security update for dovecot23 (Important) |
Description: |
This update for dovecot23 fixes the following issues:
- CVE-2019-11500: Fixed the NUL byte handling in IMAP and ManageSieve protocol parsers. (bsc#1145559) - CVE-2019-11499: Fixed a vulnerability where the submission-login would crash over a TLS secured channel (bsc#1133625). - CVE-2019-11494: Fixed a denial of service if the authentication is aborted by disconnecting (bsc#1133624).
|
Family: | unix | Class: | patch |
Status: | | Reference(s): | 1133624 1133625 1145559 CVE-2019-11494 CVE-2019-11499 CVE-2019-11500 SUSE-SU-2019:2514-1
|
Platform(s): | SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Storage 6 SUSE Manager Proxy 4.0 SUSE Manager Server 4.0
| Product(s): | |
Definition Synopsis |
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information
dovecot23-2.3.3-8.1 is installed
OR dovecot23-backend-mysql-2.3.3-8.1 is installed
OR dovecot23-backend-pgsql-2.3.3-8.1 is installed
OR dovecot23-backend-sqlite-2.3.3-8.1 is installed
OR dovecot23-devel-2.3.3-8.1 is installed
OR dovecot23-fts-2.3.3-8.1 is installed
OR dovecot23-fts-lucene-2.3.3-8.1 is installed
OR dovecot23-fts-solr-2.3.3-8.1 is installed
OR dovecot23-fts-squat-2.3.3-8.1 is installed
|