Lucene search
SuseOPENSUSE-SU-2020:0720-1HistoryMay 26, 2020 - 12:00 a.m.
Security update for dovecot23 (important)
2020-05-2600:00:00
lists.opensuse.org
51
0.038 Low
EPSS
Percentile
91.9%
An update that fixes three vulnerabilities is now available.
Description:
This update for dovecot23 to 2.3.10 fixes the following issues:
Security issues fixed:
- CVE-2020-10957: Fixed a crash caused by malformed NOOP commands
(bsc#1171457). - CVE-2020-10958: Fixed a use-after-free when receiving too many newlines
(bsc#1171458). - CVE-2020-10967: Fixed a crash in the lmtp and submission components
caused by mails with empty quoted localparts (bsc#1171456).
Non-security issues fixed:
- The update to 2.3.10 fixes several bugs. Please refer to
https://dovecot.org/doc/NEWS for a complete list of changes.
This update was imported from the SUSE:SLE-15-SP1:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.1:
zypper in -t patch openSUSE-2020-720=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.1 | x86_64 | < - openSUSE Leap 15.1 (x86_64): | - openSUSE Leap 15.1 (x86_64):.x86_64.rpm |
Related
freebsd
freebsd
Dovecot -- Multiple vulnerabilities
2020-04-02 00:00:00
mail/dovecot -- multiple vulnerabilities
2020-04-23 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: dovecot-2.3.10.1-1.fc31
2020-05-28 02:00:59
[SECURITY] Fedora 32 Update: dovecot-2.3.10.1-1.fc32
2020-05-24 03:30:04
[SECURITY] Fedora 31 Update: dovecot-2.3.11.3-4.fc31
2020-09-03 16:27:31
mageia
mageia
Updated dovecot packages fix security vulnerabilities
2020-05-24 21:04:47
openvas
openvas
Ubuntu: Security Advisory (USN-4361-1)
2020-05-19 00:00:00
Mageia: Security Advisory (MGASA-2020-0222)
2022-01-28 00:00:00
Fedora: Security Advisory for dovecot (FEDORA-2020-1dee17d880)
2020-05-29 00:00:00
zdt
zdt
altlinux
altlinux
Security fix for the ALT Linux 9 package dovecot version 2.3.10.1-alt1
2020-05-21 00:00:00
ubuntu
ubuntu
Dovecot vulnerabilities
2020-05-18 00:00:00
nessus
nessus
FreeBSD : Dovecot -- Multiple vulnerabilities (37d106a8-15a4-483e-8247-fcb68b16eaf8)
2020-05-19 00:00:00
Debian DSA-4690-1 : dovecot - security update
2020-05-21 00:00:00
Fedora 32 : 1:dovecot (2020-1dee17d880)
2020-06-04 00:00:00
osv
osv
dovecot - security update
2020-05-20 00:00:00
Moderate: dovecot security update
2020-11-03 12:33:59
CVE-2020-10957
2020-05-18 14:15:11
packetstorm
packetstorm
Open-Xchange Dovecot 2.3.10 Null Pointer Dereference / Denial Of Service
2020-05-19 00:00:00
archlinux
archlinux
[ASA-202005-9] dovecot: multiple issues
2020-05-19 00:00:00
debian
debian
[SECURITY] [DSA 4690-1] dovecot security update
2020-05-20 19:49:21
[SECURITY] [DSA 4690-1] dovecot security update
2020-05-20 19:49:21
almalinux
almalinux
Moderate: dovecot security update
2020-11-03 12:33:59
redhat
redhat
(RHSA-2020:4763) Moderate: dovecot security update
2020-11-03 12:33:59
(RHSA-2020:2901) Important: dovecot security update
2020-07-13 20:05:04
rosalinux
rosalinux
Advisory ROSA-SA-2021-1824
2021-07-02 16:38:52
oraclelinux
oraclelinux
dovecot security update
2020-11-10 00:00:00
dovecot security update
2020-07-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Dovecot Null Pointer Dereference (CVE-2020-10957)
2020-06-17 00:00:00
Dovecot Denial of Service (CVE-2020-10967)
2020-06-17 00:00:00
cvelist
cvelist
cve
cve
redhatcve
redhatcve
prion
prion
Code injection
2020-05-18 15:15:00
Null pointer dereference
2020-05-18 14:15:00
Command injection
2020-05-18 14:15:00
ubuntucve
ubuntucve
debiancve
debiancve
veracode
veracode
Denial Of Service (DoS)
2020-08-06 21:34:19
Denial Of Service (DoS)
2020-07-15 02:56:53
Denial Of Service (DoS)
2020-08-06 21:34:15
hackerone
hackerone
Open-Xchange: Use after free in smtp_server_connection_handle_command
2020-03-23 10:54:20
alpinelinux
alpinelinux
nvd
nvd