10 matches found
RLSA-2024:9195 Moderate: cyrus-imapd security update
The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNTP, and SIEVE support. Security Fixes: cyrus-imapd: unbounded memory allocation by sending many LITERALs in a single command CVE-2024-34055 For more details about the security issues, including the impact, a CVSS...
cyrus-imapd security update
An update is available for cyrus-imapd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The cyrus-imapd packages contain a high-performance mail server with IMAP...
[SECURITY] [DLA 3052-1] cyrus-imapd security update
Debian LTS Advisory DLA-3052-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany June 20, 2022 https://wiki.debian.org/LTS Package : cyrus-imapd Version : 2.5.10-3+deb9u3 CVE ID : CVE-2019-18928 CVE-2021-33582 Debian Bug : 993433 It was discovered that the Cyrus IMA...
SUSE-SU-2016:1459-1 Security update for cyrus-imapd
This update for cyrus-imapd fixes the following issues: - Previous versions of cyrus-imapd would not allow its users to disable old SSL variants that are vulnerable to attacks like BEAST and POODLE. This patch adds the configuration option 'tlsversions' to remedy that issue. Note that users who...
MGASA-2016-0045 Updated cyrus-imapd packages fix security vulnerability
Cyrus-imapd versions 2.4.18 and earlier are vulnerable to potential integer and buffer overflows CVE-2015-8077, CVE-2015-8078...
RedHat Update for cyrus-imapd RHSA-2011:0859-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Mandrake Linux Security Advisory : cyrus-imapd (MDKSA-2005:051)
Several overruns have been fixed in the IMAP annote extension as well as in cached header handling which can be run by an authenticated user. As well, additional bounds checking in fetchnews was improved to avoid exploitation by a peer news admin. %NASLMINLEVEL 70300 C Tenable Network Security,...
Security fix for the ALT Linux 8 package cyrus-imapd version 2.2.10-alt1
Nov. 24, 2004 Alexei Takaseev 2.2.10-alt1 - 2.2.10 - CAN-2004-1015...
Cyrus IMAPd -- IMAPMAGICPLUS preauthentification overflow
When the option imapmagicplus is activated on a server the PROXY and LOGIN commands suffer a standard stack overflow, because the username is not checked against a maximum length when it is copied into a temporary stack buffer. This bug is especially dangerous because it can be triggered before a...
Cyrus IMAPd -- APPEND command uses undefined programming construct
To support MULTIAPPENDS the cmdappend handler uses the global stage array. This array is one of the things that gets destructed when the fatal function is triggered. When the Cyrus IMAP code adds new entries to this array this is done with the help of the postfix increment operator in combination...