6 matches found
SUSE CVE-2024-25584
Dovecot accepts dot LF DOT LF symbol as end of DATA command. RFC requires that it should always be CR LF DOT CR LF. This causes Dovecot to convert single mail with LF DOT LF in middle, into two emails when relaying to SMTP. Dovecot will split mail with LF DOT LF into two mails. Upgrade to latest...
CVE-2024-25584
creationtimestamp| type| source ---|---|--- 2024-09-06 18:16:27+00:00| seen| https://t.me/cvedetector/4974...
CVE-2024-25584
Dovecot accepts dot LF DOT LF symbol as end of DATA command. RFC requires that it should always be CR LF DOT CR LF. This causes Dovecot to convert single mail with LF DOT LF in middle, into two emails when relaying to SMTP. Dovecot will split mail with LF DOT LF into two mails. Upgrade to latest...
AZL-69910 CVE-2024-25584 affecting package dovecot 2.3.20-1
Dovecot accepts dot LF DOT LF symbol as end of DATA command. RFC requires that it should always be CR LF DOT CR LF. This causes Dovecot to convert single mail with LF DOT LF in middle, into two emails when relaying to SMTP. Dovecot will split mail with LF DOT LF into two mails. Upgrade to latest...
CVE-2024-25584
CVE-2024-25584 — Dovecot input handling vulnerability : Dovecot accepts the sequence “dot LF DOT LF” as an end of DATA command, whereas RFCs require CR LF DOT CR LF. This leads to mail relays potentially splitting a single message into two emails when relayed via SMTP. Affected component is the D...
CVE-2024-25584
Dovecot accepts dot LF DOT LF symbol as end of DATA command. RFC requires that it should always be CR LF DOT CR LF. This causes Dovecot to convert single mail with LF DOT LF in middle, into two emails when relaying to SMTP. Dovecot will split mail with LF DOT LF into two mails. Upgrade to latest...