6 matches found
Dovecot 2.0.x < 2.0.16 Man In The Middle Vulnerability
Dovecot is prone to a man-in-the-middle vulnerability. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you ca...
openSUSE Security Update : dovecot20 (openSUSE-SU-2012:0219-1)
In proxy mode dovecot did not verify that the SSL certificate of the remote actually matched the server name. Dovecot was updated to version 2.0.16 which fixes the problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
CVE-2011-4318
Dovecot 2.0.x before 2.0.16 is vulnerable when ssl or starttls is enabled and hostname is used to define the proxy destination: it does not verify that the server hostname matches a domain name in the certificate’s CN, enabling MITM spoofing with a valid certificate. Affected version family: Dove...
RedHat Update for dovecot RHSA-2013:0520-02
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
RHEL 6 : dovecot (RHSA-2013:0520)
Updated dovecot packages that fix three security issues and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...
[USN-1295-1] Dovecot vulnerability
========================================================================== Ubuntu Security Notice USN-1295-1 December 08, 2011 dovecot vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...