Updated dovecot packages fix security vulnerability
Publication date: 08 Sep 2019Modification date: 08 Sep 2019
Type: security
Affected Mageia releases : 6 , 7
CVE: CVE-2019-11500
Description
Updated dovecot packages fix security vulnerability:
IMAP protocol parser does not properly handle NUL byte when scanning data
in quoted strings, leading to out of bounds heap memory writes.
References
SRPMS
7/core
- dovecot-2.3.7.2-1.mga7
6/core
- dovecot-2.2.36.4-1.mga6