5 matches found
SUSE CVE-2021-32056
Cyrus IMAP before 3.2.7, and 3.3.x and 3.4.x before 3.4.1, allows remote authenticated users to bypass intended access restrictions on server annotations and consequently cause replication to stall...
Security fix for the ALT Linux 9 package cyrus-imapd version 3.2.7-alt1
3.2.7-alt1 built June 11, 2021 Sergey Y. Afonin in task 274230 June 10, 2021 Sergey Y. Afonin - 3.2.7 fixes: CVE-2021-32056...
FreeBSD : cyrus-imapd -- Remote authenticated users could bypass intended access restrictions on certain server annotations. (12156786-b18a-11eb-8cba-080027b00c2e)
Cyrus IMAP 3.4.1 Release Notes states : Fixed CVE-2021-32056: Remote authenticated users could bypass intended access restrictions on certain server annotations. Additionally, a long-standing bug in replication did not allow server annotations to be replicated. Combining these two bugs, a remote...
CVE-2021-32056
CVE-2021-32056 affects Cyrus IMAP: vulnerable are Cyrus IMAP before 3.2.7, and 3.3.x and 3.4.x before 3.4.1. Root cause: remote authenticated users can bypass server-annotation access restrictions, causing replication to stall. Remediation: upgrade Cyrus IMAP to 3.2.7 or to 3.4.1 (or later). No e...
cyrus-imapd -- Remote authenticated users could bypass intended access restrictions on certain server annotations.
Cyrus IMAP 3.4.1 Release Notes states: Fixed CVE-2021-32056: Remote authenticated users could bypass intended access restrictions on certain server annotations. Additionally, a long-standing bug in replication did not allow server annotations to be replicated. Combining these two bugs, a remote...