Dovecot regression

2019-08-28T00:00:00
ID USN-4110-3
Type ubuntu
Reporter Ubuntu
Modified 2019-08-28T00:00:00

Description

USN-4110-1 fixed a vulnerability in Dovecot. The update introduced a regression causing a wrong check. This update fixes the problem.

We apologize for the inconvenience.

Original advisory details:

Nick Roessler and Rafi Rubin discovered that Dovecot incorrectly handled certain data. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code.