Lucene search
GoogleOSV:CVE-2019-10691HistoryApr 24, 2019 - 5:29 p.m.
CVE-2019-10691
2019-04-2417:29:00
Google
osv.dev
3
The JSON encoder in Dovecot before 2.3.5.2 allows attackers to repeatedly crash the authentication service by attempting to authenticate with an invalid UTF-8 sequence as the username.
| CPE | Name | Operator | Version |
|---|---|---|---|
| core | eq | 2.2.1 | |
| core | eq | 2.1.rc2 | |
| dovecot | eq | 2.3.5.1-r3 | |
| dovecot | eq | 1.2.6-r0 | |
| dovecot | eq | 2.2.19-r0 | |
| core | eq | 2.2.7 | |
| dovecot | eq | 2.0.10-r0 | |
| dovecot | eq | 2.2.33.2-r1 | |
| dovecot | eq | 2.2.33.2-r2 | |
| core | eq | 1.1.alpha5 |
References
lists.opensuse.org/opensuse-security-announce/2019-05/msg00000.html
www.openwall.com/lists/oss-security/2019/04/18/3
dovecot.org/list/dovecot-news/2019-April/000406.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QHFZ5OWRIZGIWZJ5PTNVWWZNLLNH4XYS/
security.gentoo.org/glsa/201908-29
Related
nessus
nessus
openSUSE Security Update : dovecot23 (openSUSE-2019-1312)
2019-05-03 00:00:00
Ubuntu 18.10 / 19.04 : Dovecot vulnerability (USN-3951-1)
2019-04-24 00:00:00
ubuntucve
ubuntucve
CVE-2019-10691
2019-04-18 00:00:00
cve
cve
CVE-2019-10691
2019-04-24 17:29:00
nvd
nvd
CVE-2019-10691
2019-04-24 17:29:00
cvelist
cvelist
CVE-2019-10691
2019-04-24 16:49:37
freebsd
freebsd
dovecot -- json encoder crash
2019-04-09 00:00:00
suse
suse
Security update for dovecot23 (important)
2019-05-02 00:00:00
debiancve
debiancve
CVE-2019-10691
2019-04-24 17:29:00
alpinelinux
alpinelinux
CVE-2019-10691
2019-04-24 17:29:00
prion
prion
Design/Logic Flaw
2019-04-24 17:29:00
openvas
openvas
Ubuntu: Security Advisory (USN-3951-1)
2019-04-24 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:0997-1)
2021-06-09 00:00:00
openSUSE: Security Advisory for dovecot23 (openSUSE-SU-2019:1312-1)
2019-05-03 00:00:00
archlinux
archlinux
[ASA-201904-9] dovecot: denial of service
2019-04-18 00:00:00
ubuntu
ubuntu
Dovecot vulnerability
2019-04-23 00:00:00
redhatcve
redhatcve
CVE-2019-10691
2019-04-18 12:19:51
gentoo
gentoo
Dovecot: Multiple vulnerabilities
2019-08-31 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: dovecot-2.3.7.2-1.fc29
2019-09-06 12:59:59
[SECURITY] Fedora 30 Update: dovecot-2.3.7.2-1.fc30
2019-08-30 14:21:41
[SECURITY] Fedora 30 Update: dovecot-2.3.9.2-1.fc30
2020-01-12 01:17:33
rosalinux
rosalinux
Advisory ROSA-SA-2021-1824
2021-07-02 16:38:52