Dovecot vulnerabilities

2018-03-05T00:00:00
ID USN-3587-1
Type ubuntu
Reporter Ubuntu
Modified 2018-03-05T00:00:00

Description

It was discovered that Dovecot incorrectly handled parsing certain email
addresses. A remote attacker could use this issue to cause Dovecot to
crash, resulting in a denial of service, or possibly obtain sensitive
information. (CVE-2017-14461)

It was discovered that Dovecot incorrectly handled TLS SNI config lookups.
A remote attacker could possibly use this issue to cause Dovecot to crash,
resulting in a denial of service. (CVE-2017-15130)