17 matches found
CentOS 8 : cyrus-imapd (CESA-2019:1771)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:1771 advisory. - cyrus-imapd: buffer overflow in CalDAV request handling triggered by a long iCalendar property name CVE-2019-11356 Note that Nessus has not tested for this...
Ubuntu: Security Advisory (USN-4566-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4566-1: Cyrus IMAP Server vulnerabilities
It was dicovered that Cyrus IMAP Server could execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCalendar property name. An attacker could use this vulnerability to cause a crash or possibly execute arbitrary code. CVE-2019-11356 It was discovered that the Cyrus IMA...
Security fix for the ALT Linux 9 package cyrus-imapd version 3.0.11-alt1
3.0.11-alt1 built Sept. 5, 2019 Alexey Shabalin in task 237080 3.0.11-alt1 built Aug. 14, 2019 Sergey Y. Afonin in task 236018 Aug. 13, 2019 Sergey Y. Afonin - 3.0.11 CVE-2019-11356 fixed in 3.0.10 - updated README.ALT.rus...
Security fix for the ALT Linux 8 package cyrus-imapd version 2.5.13-alt0.M80P.1
2.5.13-alt0.M80P.1 built Sept. 5, 2019 Sergey Y. Afonin in task 236049 Aug. 14, 2019 Sergey Y. Afonin - 2.5.13 CVE-2019-11356 - built with USESETPROCTITLE some solutions of the issue 2850 was used, look to cyrus-imapd-2.5.13-setproctitle.c.patch - fixed packaging the imtest utility...
MGASA-2019-0219 Updated cyrus-imapd packages fix security vulnerability
Updated cyrus-imapd package fixes security vulnerability: It was discovered that cyrus-imapd had a buffer overflow in CalDAV request handling triggered by a long iCalendar property name CVE-2019-11356...
Updated cyrus-imapd packages fix security vulnerability
Updated cyrus-imapd package fixes security vulnerability: It was discovered that cyrus-imapd had a buffer overflow in CalDAV request handling triggered by a long iCalendar property name CVE-2019-11356...
RHEL 8 : cyrus-imapd (RHSA-2019:1771)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:1771 advisory. The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNTP, and SIEVE support. Security Fixes: cyrus-imapd: buffer overflo...
[SECURITY] [DSA 4458-1] cyrus-imapd security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4458-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 08, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4458-1] cyrus-imapd security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4458-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 08, 2019 https://www.debian.org/security/faq -...
Fedora 30 : cyrus-imapd (2019-309f559057)
Update to version 3.0.10, which fixes a security issue a buffer overrun vulnerability in the httpd daemon, CVE-2019-11356. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean...
CVE-2019-11356
A flaw was found in the CalDAV feature in httpd in Cyrus IMAP. This flaw allows a remote attacker to execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCalendar property name...
CVE-2019-11356
The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows remote attackers to execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCalendar property name...
CVE-2019-11356
CVE-2019-11356 affects Cyrus IMAP Server (cyrus-imapd) via the CalDAV feature in httpd. The root cause is a buffer overflow triggered by a long iCalendar property name in CalDAV requests, enabling remote code execution. Impact is high (per CVSS) with potential remote compromise, depending on the ...
CVE-2019-11356
The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows remote attackers to execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCalendar property name...
FreeBSD : cyrus-imapd -- buffer overrun in httpd (10fd731c-8088-11e9-b6ae-001871ec5271)
Cyrus IMAP 3.0.10 Release Notes states : Fixed CVE-2019-11356: buffer overrun in httpd C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2020 Jacques Vidrine and contributors Redistribution and u...
cyrus-imapd -- buffer overrun in httpd
Cyrus IMAP 3.0.10 Release Notes states: Fixed CVE-2019-11356: buffer overrun in httpd...