CVE-2019-3814

Synopsis Moderate: dovecot security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for dovecot is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) ba ...

Synopsis Moderate: dovecot security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for dovecot is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) ba ...

Dovecot could be made to expose sensitive information over the network ...

Dovecot could be made to expose sensitive information over the network ...

In Dovecot before 22363 and 23x before 2351, a local attacker can cause a buffer overflow in the indexer-worker process, which can be used to elevate to root This occurs because of missing checks in the fts and pop3-uidl components (CVE-2019-7524) It was discovered that Dovecot before versions 22361 and 2341 incorrectly handled clie ...

In Dovecot before 22363 and 23x before 2351, a local attacker can cause a buffer overflow in the indexer-worker process, which can be used to elevate to root This occurs because of missing checks in the fts and pop3-uidl components (CVE-2019-7524) It was discovered that Dovecot before versions 22361 and 2341 incorrectly handled clie ...

A vulnerability has been found in Dovecot versions prior to 2341, allowing a remote client in possession of a trusted SSL certificate to log in as any user, in some configurations This affects only installations using auth_ssl_require_client_cert = yes and auth_ssl_username_from_cert = yes, and the the attacker might have access to a trusted ce ...