Lucene search
K

36 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.8 views

Debian dla-4618 : gsasl - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4618 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4618-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS5.5AI score0.00455EPSS
Exploits0References4
OSV
OSV
added 2026/05/07 5:31 p.m.6 views

CLSA-2026-1778175067 cyrus-sasl: Fix of CVE-2019-19906

CVE-2019-19906: fix off-by-one in sasladdstring lib/common.c that could cause denial of service or information disclosure via crafted input...

7.5CVSS7.1AI score0.08036EPSS
Exploits1References1
Mageia
Mageia
added 2025/11/13 6:3 p.m.6 views

Updated perl-Authen-SASL packages fix security vulnerability

Authen::SASL::Perl::DIGESTMD5 versions 2.04 through 2.1800 for Perl generates the cnonce insecurely. CVE-2025-40918...

6.5CVSS6.7AI score0.00394EPSS
Exploits0References2
OSV
OSV
added 2022/02/28 3:13 p.m.3 views

CLSA-2022-1646061219 Fixed CVE-2022-24407 in cyrus-sasl

CVE-2022-24407: Fix failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands...

8.8CVSS7.3AI score0.04123EPSS
Exploits0References1
OSV
OSV
added 2016/05/05 9:5 a.m.5 views

MGASA-2016-0161 Updated subversion packages fix security vulnerabilities

Updated subversion packages fix security vulnerabilities: Daniel Shahaf and James McCoy discovered that an implementation error in the authentication against the Cyrus SASL library would permit a remote user to specify a realm string which is a prefix of the expected realm string and potentially...

6.8CVSS6.5AI score0.19628EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2016/05/02 12:0 a.m.30 views

Debian DSA-3561-1 : subversion - security update

Several vulnerabilities were discovered in Subversion, a version control system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2016-2167 Daniel Shahaf and James McCoy discovered that an implementation error in the authentication against the Cyrus SASL...

6.8CVSS6.8AI score0.19628EPSS
Exploits0References6
Fedora
Fedora
added 2015/11/17 6:32 p.m.36 views

[SECURITY] Fedora 22 Update: cyrus-imapd-2.4.18-1.fc22

The cyrus-imapd package contains the core of the Cyrus IMAP server. It is a scaleable enterprise mail system designed for use from small to large enterprise environments using standards-based internet mail technologies. A full Cyrus IMAP implementation allows a seamless mail and bulletin board...

7.5CVSS1AI score0.03261EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.25 views

Oracle Linux 5 : cyrus-imapd (ELSA-2009-1116)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2009-1116 advisory. 2.3.7-2.2 - add -fno-strict-aliasing to cflags 2.3.7-2.1 - fix saslencode64's buffers 505427 Tenable has extracted the preceding description block directly from...

7.5CVSS5.1AI score0.08206EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.22 views

Scientific Linux Security Update : cyrus-imapd on SL4.x, SL5.x i386/x86_64

It was discovered that the Cyrus SASL library cyrus-sasl does not always reliably terminate output from the saslencode64 function used by programs using this library. The Cyrus IMAP server cyrus-imapd relied on this function's output being properly terminated. Under certain conditions, improperly...

7.5CVSS5AI score0.08206EPSS
Exploits0References2
Fedora
Fedora
added 2011/10/13 11:51 p.m.34 views

[SECURITY] Fedora 14 Update: cyrus-imapd-2.3.18-1.fc14

The cyrus-imapd package contains the core of the Cyrus IMAP server. It is a scaleable enterprise mail system designed for use from small to large enterprise environments using standards-based internet mail technologies. A full Cyrus IMAP implementation allows a seamless mail and bulletin board...

7.5CVSS1AI score0.05365EPSS
Exploits0
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.23 views

CentOS Update for cyrus-imapd CESA-2009:1116 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.5CVSS4.8AI score0.08206EPSS
Exploits0References2
Fedora
Fedora
added 2011/06/11 4:34 a.m.34 views

[SECURITY] Fedora 13 Update: cyrus-imapd-2.3.16-5.fc13

The cyrus-imapd package contains the core of the Cyrus IMAP server. It is a scaleable enterprise mail system designed for use from small to large enterprise environments using standards-based internet mail technologies. A full Cyrus IMAP implementation allows a seamless mail and bulletin board...

5.1CVSS0.9AI score0.03999EPSS
Exploits0
Fedora
Fedora
added 2011/06/11 4:24 a.m.42 views

[SECURITY] Fedora 14 Update: cyrus-imapd-2.3.16-8.fc14

The cyrus-imapd package contains the core of the Cyrus IMAP server. It is a scaleable enterprise mail system designed for use from small to large enterprise environments using standards-based internet mail technologies. A full Cyrus IMAP implementation allows a seamless mail and bulletin board...

5.1CVSS1AI score0.03999EPSS
Exploits0
Nmap
Nmap
added 2011/05/19 6:19 p.m.336 views

smtp-vuln-cve2011-1720 NSE Script

Checks for a memory corruption in the Postfix SMTP server when it uses Cyrus SASL library authentication mechanisms CVE-2011-1720. This vulnerability can allow denial of service and possibly remote code execution. Reference: Script Arguments smtp.domain See the documentation for the smtp library...

10CVSS9.9AI score0.99448EPSS
Exploits34
FreeBSD
FreeBSD
added 2011/05/09 12:0 a.m.106 views

Postfix -- memory corruption vulnerability

The Postfix SMTP server has a memory corruption error, when the Cyrus SASL library is used with authentication mechanisms other than PLAIN and LOGIN ANONYMOUS is not affected, but should not be used for other reasons. This memory corruption is known to result in a program crash SIGSEV...

6.8CVSS1.9AI score0.21646EPSS
Exploits1References1
Fedora
Fedora
added 2009/09/09 1:54 a.m.10 views

[SECURITY] Fedora 10 Update: cyrus-imapd-2.3.14-2.fc10

The cyrus-imapd package contains the core of the Cyrus IMAP server. It is a scaleable enterprise mail system designed for use from small to large enterprise environments using standards-based internet mail technologies. A full Cyrus IMAP implementation allows a seamless mail and bulletin board...

0.9AI score
Exploits0
OpenVAS
OpenVAS
added 2009/06/23 12:0 a.m.12 views

RedHat Security Advisory RHSA-2009:1116

The remote host is missing updates announced in advisory RHSA-2009:1116. The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNTP, and SIEVE support. It was discovered that the Cyrus SASL library cyrus-sasl does not always reliably terminate output from the saslencode...

7.5CVSS0.8AI score0.08206EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/06/23 12:0 a.m.19 views

RedHat Security Advisory RHSA-2009:1116

The remote host is missing updates announced in advisory RHSA-2009:1116. The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNTP, and SIEVE support. It was discovered that the Cyrus SASL library cyrus-sasl does not always reliably terminate output from the saslencode...

7.5CVSS9.5AI score0.08206EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2009/06/18 5:26 p.m.32 views

Important: Red Hat Security Advisory: cyrus-imapd security update

Updated cyrus-imapd packages that fix a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNT...

7.5CVSS5.7AI score0.08206EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/06/05 12:0 a.m.14 views

Mandrake Security Advisory MDVSA-2009:113 (cyrus-sasl)

The remote host is missing an update to cyrus-sasl announced via advisory MDVSA-2009:113. OpenVAS Vulnerability Test $Id: mdksa2009113.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:113 cyrus-sasl Authors: Thomas Reinke Copyright: Copyright c 2009...

7.5CVSS1.1AI score0.08206EPSS
Exploits0
Rows per page
Query Builder