Oval Definition:	oval:org.opensuse.security:def:98684
Revision Date: 2020-05-22 Version: 1 Title: Security update for dovecot23 (Important) Description: This update for dovecot23 to 2.3.10 fixes the following issues: Security issues fixed: - CVE-2020-10957: Fixed a crash caused by malformed NOOP commands (bsc#1171457). - CVE-2020-10958: Fixed a use-after-free when receiving too many newlines (bsc#1171458). - CVE-2020-10967: Fixed a crash in the lmtp and submission components caused by mails with empty quoted localparts (bsc#1171456). Non-security issues fixed: - The update to 2.3.10 fixes several bugs. Please refer to https://dovecot.org/doc/NEWS for a complete list of changes. Family: unix Class: patch Status: Reference(s): 1171456 1171457 1171458 CVE-2020-10957 CVE-2020-10958 CVE-2020-10967 SUSE-SU-2020:1380-1 Platform(s): SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Storage 6 SUSE Manager Proxy 4.0 SUSE Manager Server 4.0 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dovecot23-2.3.10-11.1 is installed OR dovecot23-backend-mysql-2.3.10-11.1 is installed OR dovecot23-backend-pgsql-2.3.10-11.1 is installed OR dovecot23-backend-sqlite-2.3.10-11.1 is installed OR dovecot23-devel-2.3.10-11.1 is installed OR dovecot23-fts-2.3.10-11.1 is installed OR dovecot23-fts-lucene-2.3.10-11.1 is installed OR dovecot23-fts-solr-2.3.10-11.1 is installed OR dovecot23-fts-squat-2.3.10-11.1 is installed
BACK