rpms / dovecot

Clone
Source Code
GIT

8f46137 CVE-2020-12100: Parsing mails with a large number of MIME parts could

Authored and Committed by mhlavink 3 years ago
raw patch tree parent
2 files changed. 18 lines added. 5 lines removed.
dovecot.spec
file modified
+16 -3
sources
file modified
+2 -2 
    CVE-2020-12100: Parsing mails with a large number of MIME parts could
      have resulted in excessive CPU usage or a crash due to running out of
      stack memory.
    CVE-2020-12673: Dovecot's NTLM implementation does not correctly check
      message buffer size, which leads to reading past allocation which can
      lead to crash.
    CVE-2020-10967: lmtp/submission: Issuing the RCPT command with an
      address that has the empty quoted string as local-part causes the lmtp
      service to crash.
    CVE-2020-12674: Dovecot's RPA mechanism implementation accepts
      zero-length message, which leads to assert-crash later on.
  • Build failed
    failure
    Built as dovecot-1:2.3.11.3-1.fc34
    3 years ago
file modified
+16 -3
file modified
+2 -2
Powered by Pagure 5.14.1
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.