Debian Security Update DSA-4418 dovecot - security update

Thread starter LinuxBot
Start date Mar 29, 2019

LinuxBot

Member

Mar 29, 2019

A vulnerability was discovered in the Dovecot email server. When reading FTS or POP3-UIDL headers from the Dovecot index, the input buffer size is not bounds-checked. An attacker with the ability to modify dovecot indexes, can take advantage of this flaw for privilege escalation or the execution of arbitrary code with the permissions of the dovecot user. Only installations using the FTS or pop3 migration plugins are affected.

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Staff online

wizardfromoz
Administrator

Members online

Total: 897 (members: 2, guests: 895)

Latest posts

USB icon on desktop
- Latest: wizardfromoz
- 13 minutes ago
Mint
I
Corel Video Editor
- Latest: InvaderSumo
- Today at 5:59 AM
General Linux Questions
Say Hello to Goodbye Mails: Temporary Disposable Email Accounts for Creating Accounts
- Latest: bob466
- Today at 4:09 AM
Mail Server
By the way, Ubuntu 24.10 has a codename...
- Latest: bob466
- Today at 4:05 AM
Ubuntu forum
Compare Mint with MX
- Latest: bob466
- Today at 4:01 AM
Mint

Top