Synopsis: Important: dovecot security update
Advisory ID: SLSA-2019:2836-1
Issue Date: 2019-09-20
CVE Numbers: CVE-2019-11500
—
Security Fix(es):
* dovecot: improper NULL byte handling in IMAP and ManageSieve protocol
parsers leads to out of bounds writes (CVE-2019-11500)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
—
SL7
x86_64
dovecot-2.2.36-3.el7_7.1.i686.rpm
dovecot-2.2.36-3.el7_7.1.x86_64.rpm
dovecot-debuginfo-2.2.36-3.el7_7.1.i686.rpm
dovecot-debuginfo-2.2.36-3.el7_7.1.x86_64.rpm
dovecot-mysql-2.2.36-3.el7_7.1.x86_64.rpm
dovecot-pgsql-2.2.36-3.el7_7.1.x86_64.rpm
dovecot-pigeonhole-2.2.36-3.el7_7.1.x86_64.rpm
dovecot-devel-2.2.36-3.el7_7.1.x86_64.rpm
– Scientific Linux Development Team
