11 matches found
Huawei EulerOS: Security Advisory for dovecot (EulerOS-SA-2019-1644)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for dovecot23 (openSUSE-SU-2019:1312-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : dovecot23 (openSUSE-2019-1312)
This update for dovecot23 fixes the following issues : Security issue fixed : - CVE-2019-10691: Fixed a denial of service via reachable assertion when processing invalid UTF-8 characters bsc1132501. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable...
OPENSUSE-SU-2019:1312-1 Security update for dovecot23
This update for dovecot23 fixes the following issues: Security issue fixed: - CVE-2019-10691: Fixed a denial of service via reachable assertion when processing invalid UTF-8 characters bsc1132501. This update was imported from the SUSE:SLE-15:Update update project...
Dovecot < 2.3.5.2 Denial of Service Vulnerability
Dovecot is prone to a Denial of Service DoS vulnerability. Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software...
CVE-2019-10691
The JSON encoder in Dovecot before 2.3.5.2 allows attackers to repeatedly crash the authentication service by attempting to authenticate with an invalid UTF-8 sequence as the username...
Ubuntu 18.10 / 19.04 : Dovecot vulnerability (USN-3951-1)
It was discovered that the Dovecot JSON encoder incorrectly handled certain invalid UTF-8 characters. A remote attacker could possibly use this issue to cause Dovecot to repeatedly crash, resulting in a denial of service. Note that Tenable Network Security has extracted the preceding description...
SUSE SLES15 Security Update : dovecot23 (SUSE-SU-2019:0997-1)
This update for dovecot23 fixes the following issues : Security issue fixed : CVE-2019-10691: Fixed a denial of service via reachable assertion when processing invalid UTF-8 characters bsc1132501. Note that Tenable Network Security has extracted the preceding description block directly from the...
SUSE-SU-2019:0997-1 Security update for dovecot23
This update for dovecot23 fixes the following issues: Security issue fixed: - CVE-2019-10691: Fixed a denial of service via reachable assertion when processing invalid UTF-8 characters bsc1132501...
FreeBSD : dovecot -- json encoder crash (a64aa22f-61ec-11e9-85b9-a4badb296695)
Aki Tuomi reports : CVE-2019-10691: Trying to login with 8bit username containing invalid UTF8 input causes auth process to crash if auth policy is enabled. This could be used rather easily to cause a DoS. Similar crash also happens during mail delivery when using invalid UTF8 in From or Subject...
dovecot -- json encoder crash
Aki Tuomi reports: CVE-2019-10691: Trying to login with 8bit username containing invalid UTF8 input causes auth process to crash if auth policy is enabled. This could be used rather easily to cause a DoS. Similar crash also happens during mail delivery when using invalid UTF8 in From or Subject...