Lucene search
K

19 matches found

OSV
OSV
added 2026/05/02 1:0 a.m.7 views

CLSA-2026-1777463708 dovecot: Fix of CVE-2017-15132

CVE-2017-15132: fix memory leak and hash-table use-after-free in authclientrequestabort lib-auth. Squashed upstream commits 1a29ed2f96da and a9b135760aea...

7.5CVSS6.7AI score0.0312EPSS
Exploits0References1
OSV
OSV
added 2026/04/29 2:25 p.m.7 views

CLSA-2026-1777463410 dovecot: Fix of CVE-2017-15132

CVE-2017-15132: fix memory leak and hash-table use-after-free in authclientrequestabort lib-auth. Squashed upstream commits 1a29ed2f96da and a9b135760aea...

7.5CVSS6.7AI score0.0312EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2017-15132

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in dovecot 2.0 up to 2.2.33 and 2.3.0. An abort of SASL authentication results in a memory leak in dovecot's auth client used by login processe...

7.5CVSS6.3AI score0.0312EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2018:0466-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.0312EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for dovecot (EulerOS-SA-2018-1057)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.0312EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/04/02 12:0 a.m.33 views

Debian DLA-1333-1 : dovecot security update

Several vulnerabilities have been discovered in the Dovecot email server. The Common Vulnerabilities and Exposures project identifies the following issues : CVE-2017-14461 Aleksandar Nikolic of Cisco Talos and 'flxflndy' discovered that Dovecot does not properly parse invalid email addresses, whi...

7.5CVSS6.6AI score0.16979EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2018/03/20 12:0 a.m.26 views

EulerOS 2.0 SP2 : dovecot (EulerOS-SA-2018-1057)

According to the version of the dovecot packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in dovecot 2.0 up to 2.2.33 and 2.3.0. An abort of SASL authentication results in a memory leak in dovecot's auth client used by...

7.5CVSS6.5AI score0.0312EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/03/20 12:0 a.m.25 views

EulerOS 2.0 SP1 : dovecot (EulerOS-SA-2018-1056)

According to the version of the dovecot packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in dovecot 2.0 up to 2.2.33 and 2.3.0. An abort of SASL authentication results in a memory leak in dovecot's auth client used by...

7.5CVSS6.5AI score0.0312EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2018/03/06 12:0 a.m.35 views

[ASA-201803-7] dovecot: multiple issues

Arch Linux Security Advisory ASA-201803-7 ========================================= Severity: High Date : 2018-03-06 CVE-ID : CVE-2017-14461 CVE-2017-15130 CVE-2017-15132 Package : dovecot Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-645 Summary ======= The packag...

7.5CVSS0.3AI score0.16979EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2018/03/05 12:0 a.m.42 views

Debian DSA-4130-1 : dovecot - security update

Several vulnerabilities have been discovered in the Dovecot email server. The Common Vulnerabilities and Exposures project identifies the following issues : - CVE-2017-14461 Aleksandar Nikolic of Cisco Talos and 'flxflndy' discovered that Dovecot does not properly parse invalid email addresses,...

7.5CVSS6.5AI score0.16979EPSS
Exploits0References13
Debian
Debian
added 2018/03/02 10:28 p.m.23 views

[SECURITY] [DSA 4130-1] dovecot security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4130-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 02, 2018 https://www.debian.org/security/faq -...

7.5CVSS7.7AI score0.16979EPSS
Exploits0
Debian
Debian
added 2018/03/02 10:28 p.m.49 views

[SECURITY] [DSA 4130-1] dovecot security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4130-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 02, 2018 https://www.debian.org/security/faq -...

5.5CVSS2.1AI score0.16979EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/03/01 12:0 a.m.48 views

Debian: Security Advisory (DSA-4130-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.16979EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/02/21 12:0 a.m.26 views

openSUSE Security Update : dovecot22 (openSUSE-2018-189)

This update for dovecot22 fixes one issue. This security issue was fixed : - CVE-2017-15132: An abort of SASL authentication resulted in a memory leak in dovecot's auth client used by login processes. The leak has impact in high performance configuration where same login processes are reused and...

7.5CVSS6.6AI score0.0312EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/02/20 12:0 a.m.25 views

SUSE SLES12 Security Update : dovecot22 (SUSE-SU-2018:0466-1)

This update for dovecot22 fixes one issue. This security issue was fixed : - CVE-2017-15132: An abort of SASL authentication resulted in a memory leak in dovecot's auth client used by login processes. The leak has impact in high performance configuration where same login processes are reused and...

7.5CVSS6.6AI score0.0312EPSS
Exploits0References4
OSV
OSV
added 2018/02/16 2:59 p.m.5 views

SUSE-SU-2018:0466-1 Security update for dovecot22

This update for dovecot22 fixes one issue. This security issue was fixed: - CVE-2017-15132: An abort of SASL authentication resulted in a memory leak in dovecot's auth client used by login processes. The leak has impact in high performance configuration where same login processes are reused and c...

7.5CVSS7.5AI score0.0312EPSS
Exploits0References3
Mageia
Mageia
added 2018/02/06 6:25 a.m.36 views

Updated dovecot packages fix security vulnerability

A flaw was found in dovecot 2.0 up to 2.2.33 and 2.3.0. An abort of SASL authentication results in a memory leak in dovecot's auth client used by login processes. The leak has impact in high performance configuration where same login processes are reused and can cause the process to crash due to...

7.5CVSS1.6AI score0.0312EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/01/25 8:0 p.m.26 views

CVE-2017-15132

A flaw was found in dovecot 2.0 up to 2.2.33 and 2.3.0. An abort of SASL authentication results in a memory leak in dovecot's auth client used by login processes. The leak has impact in high performance configuration where same login processes are reused and can cause the process to crash due to...

7.3AI score0.0312EPSS
Exploits0References7
CVE
CVE
added 2018/01/25 8:0 p.m.146 views

CVE-2017-15132

CVE-2017-15132 affects Dovecot: memory-leak in the login auth client when SASL authentication is aborted, in dovecot versions 2.0 up to 2.2.33 and 2.3.0.1 (and earlier per several advisories). Impact is memory exhaustion that can crash high‑performance login processes. Remediation across referenc...

7.5CVSS6.9AI score0.0312EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder