Lucene search
OracleLinuxELSA-2019-3467HistoryNov 14, 2019 - 12:00 a.m.
dovecot security and bug fix update
2019-11-1400:00:00
linux.oracle.com
17
EPSS
0.614
Percentile
97.8%
[1:2.2.36-10]
- fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte
when scanning data in quoted strings, leading to out of bounds heap
memory writes (#1741788)
[1:2.2.36-9] - reset errno before iterating through users (#1630410)
[1:2.2.36-8] - fix CVE-2019-3814: improper certificate validation (#1674370)
[1:2.2.36-7] - do not print error message when restorecon is not present
during install (#1626395) - change default config to use minimal UID = 1000 (#1630410)
[1:2.2.36-6] - use OpenSSl implementation of HMAC, disable CRAM-MD5 when FIPS is enabled (#1618749)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 8 | src | dovecot | < 2.2.36-10.el8 | dovecot-2.2.36-10.el8.src.rpm |
| oracle linux | 8 | aarch64 | dovecot | < 2.2.36-10.el8 | dovecot-2.2.36-10.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | dovecot-devel | < 2.2.36-10.el8 | dovecot-devel-2.2.36-10.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | dovecot-mysql | < 2.2.36-10.el8 | dovecot-mysql-2.2.36-10.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | dovecot-pgsql | < 2.2.36-10.el8 | dovecot-pgsql-2.2.36-10.el8.aarch64.rpm |
| oracle linux | 8 | aarch64 | dovecot-pigeonhole | < 2.2.36-10.el8 | dovecot-pigeonhole-2.2.36-10.el8.aarch64.rpm |
| oracle linux | 8 | src | dovecot | < 2.2.36-10.el8 | dovecot-2.2.36-10.el8.src.rpm |
| oracle linux | 8 | i686 | dovecot | < 2.2.36-10.el8 | dovecot-2.2.36-10.el8.i686.rpm |
| oracle linux | 8 | x86_64 | dovecot | < 2.2.36-10.el8 | dovecot-2.2.36-10.el8.x86_64.rpm |
| oracle linux | 8 | i686 | dovecot-devel | < 2.2.36-10.el8 | dovecot-devel-2.2.36-10.el8.i686.rpm |
Related
oraclelinux
oraclelinux
dovecot security and bug fix update
2020-04-06 00:00:00
dovecot security update
2019-09-23 00:00:00
dovecot security update
2019-09-23 00:00:00
ubuntucve
ubuntucve
CVE-2019-11500
2019-08-28 00:00:00
CVE-2019-3814
2019-02-05 00:00:00
freebsd
freebsd
Dovecot -- improper input validation
2019-04-13 00:00:00
openvas
openvas
Dovecot < 2.2.36.4 and < 2.3.7.2 Heap Overflow Vulnerability
2019-08-30 00:00:00
Debian: Security Advisory (DLA-1901-1)
2019-08-30 00:00:00
Ubuntu: Security Advisory (USN-4110-4)
2022-08-26 00:00:00
alpinelinux
alpinelinux
CVE-2019-11500
2019-08-29 14:15:11
CVE-2019-3814
2019-03-27 13:29:01
osv
osv
CVE-2019-11500
2019-08-29 14:15:11
dovecot - security update
2019-08-29 00:00:00
dovecot - security update
2019-08-28 00:00:00
ubuntu
ubuntu
Dovecot vulnerability
2019-08-28 00:00:00
Dovecot regression
2019-08-28 00:00:00
Dovecot regression
2019-08-28 00:00:00
nessus
nessus
EulerOS 2.0 SP3 : dovecot (EulerOS-SA-2019-2243)
2019-11-08 00:00:00
Scientific Linux Security Update : dovecot on SL7.x x86_64 (20190920)
2019-09-23 00:00:00
NewStart CGSL MAIN 4.06 : dovecot Vulnerability (NS-SA-2019-0211)
2019-12-06 00:00:00
redhat
redhat
(RHSA-2019:2836) Important: dovecot security update
2019-09-20 08:22:52
(RHSA-2019:2822) Important: dovecot security update
2019-09-20 01:37:54
(RHSA-2019:2885) Important: dovecot security update
2019-09-23 19:48:53
debian
debian
[SECURITY] [DSA 4510-1] dovecot security update
2019-08-28 12:15:27
[SECURITY] [DLA 1901-1] dovecot security update
2019-08-29 19:02:49
[SECURITY] [DSA 4510-1] dovecot security update
2019-08-28 12:15:27
nvd
nvd
CVE-2019-11500
2019-08-29 14:15:11
CVE-2019-3814
2019-03-27 13:29:01
veracode
veracode
Remote Code Execution (RCE)
2019-09-21 00:17:27
Improper Certificate Validation
2019-11-06 00:20:57
debiancve
debiancve
CVE-2019-11500
2019-08-29 14:15:11
CVE-2019-3814
2019-03-27 13:29:01
prion
prion
Remote code execution
2019-08-29 14:15:00
Code injection
2019-03-27 13:29:00
fedora
fedora
[SECURITY] Fedora 31 Update: dovecot-2.3.7.2-1.fc31
2019-09-14 16:38:16
[SECURITY] Fedora 29 Update: dovecot-2.3.7.2-1.fc29
2019-09-06 12:59:59
[SECURITY] Fedora 30 Update: dovecot-2.3.7.2-1.fc30
2019-08-30 14:21:41
redhatcve
redhatcve
CVE-2019-11500
2019-10-10 05:23:44
CVE-2019-3814
2019-02-07 13:49:38
cvelist
cvelist
CVE-2019-11500
2019-08-29 13:51:46
CVE-2019-3814
2019-03-27 12:20:45
altlinux
altlinux
centos
centos
dovecot security update
2019-09-26 13:00:35
dovecot security update
2019-09-27 12:11:33
dovecot security update
2020-04-08 17:53:35
archlinux
archlinux
[ASA-201908-19] pigeonhole: arbitrary code execution
2019-08-28 00:00:00
[ASA-201908-18] dovecot: arbitrary code execution
2019-08-28 00:00:00
[ASA-201902-1] dovecot: authentication bypass
2019-02-06 00:00:00
mageia
mageia
Updated dovecot packages fix security vulnerability
2019-09-08 17:09:05
Updated dovecot packages fix security vulnerability
2019-02-13 14:08:25
checkpoint_advisories
checkpoint_advisories
Dovecot And Pigeonhole Remote Code Execution (CVE-2019-11500)
2020-03-01 00:00:00
cve
cve
CVE-2019-11500
2019-08-29 14:15:11
CVE-2019-3814
2019-03-27 13:29:01
amazon
amazon
Important: dovecot
2019-11-04 22:10:00
Medium: dovecot
2020-08-18 19:26:00
Medium: dovecot
2020-05-08 19:50:00
hackerone
hackerone
Open-Xchange: Username restriction bypass with SSL client authentication
2019-01-16 12:58:11
suse
suse
Security update for dovecot23 (moderate)
2019-02-26 00:00:00
Security update for dovecot22 (important)
2019-04-17 00:00:00
Security update for dovecot23 (important)
2019-10-07 00:00:00
gentoo
gentoo
Dovecot: Multiple vulnerabilities
2019-08-31 00:00:00
Dovecot: Multiple vulnerabilities
2019-04-17 00:00:00