dovecot (SL7)

Synopsis: Important: dovecot security update
Advisory ID: SLSA-2019:2836-1
Issue Date: 2019-09-20
CVE Numbers: None

Security Fix(es):

* dovecot: improper NULL byte handling in IMAP and ManageSieve protocol
parsers leads to out of bounds writes (CVE-2019-11500)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

SL7
x86_64
dovecot-2.2.36-3.el7_7.1.i686.rpm
dovecot-2.2.36-3.el7_7.1.x86_64.rpm
dovecot-debuginfo-2.2.36-3.el7_7.1.i686.rpm
dovecot-debuginfo-2.2.36-3.el7_7.1.x86_64.rpm
dovecot-mysql-2.2.36-3.el7_7.1.x86_64.rpm
dovecot-pgsql-2.2.36-3.el7_7.1.x86_64.rpm
dovecot-pigeonhole-2.2.36-3.el7_7.1.x86_64.rpm
dovecot-devel-2.2.36-3.el7_7.1.x86_64.rpm

– Scientific Linux Development Team