Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2019-0261)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2019.0261

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2019-0261)

Resumen: The remote host is missing an update for the 'dovecot' package(s) announced via the MGASA-2019-0261 advisory.

Descripción: Summary:
The remote host is missing an update for the 'dovecot' package(s) announced via the MGASA-2019-0261 advisory.

Vulnerability Insight:
Updated dovecot packages fix security vulnerability:

IMAP protocol parser does not properly handle NUL byte when scanning data
in quoted strings, leading to out of bounds heap memory writes.

Affected Software/OS:
'dovecot' package(s) on Mageia 6, Mageia 7.

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2019-11500
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3GYTZLLDNIFWT7D7JSB25ERJNMOR4CQ3/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KVHY3MU2OK2EWZJFGNDSAOMD42L7DFPX/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YSJVVVRAE3SITC2ZLGCPMFDN3WVYZBWF/
https://security.gentoo.org/glsa/201908-29
https://www.dovecot.org/security.html
https://lists.debian.org/debian-lts-announce/2019/08/msg00035.html
RedHat Security Advisories: RHSA-2019:2822
https://access.redhat.com/errata/RHSA-2019:2822
RedHat Security Advisories: RHSA-2019:2836
https://access.redhat.com/errata/RHSA-2019:2836
RedHat Security Advisories: RHSA-2019:2885
https://access.redhat.com/errata/RHSA-2019:2885
SuSE Security Announcement: openSUSE-SU-2019:2278 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00024.html
SuSE Security Announcement: openSUSE-SU-2019:2281 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00026.html

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2019.0261
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2019-0261)
Resumen:	The remote host is missing an update for the 'dovecot' package(s) announced via the MGASA-2019-0261 advisory.
Descripción:	Summary: The remote host is missing an update for the 'dovecot' package(s) announced via the MGASA-2019-0261 advisory. Vulnerability Insight: Updated dovecot packages fix security vulnerability: IMAP protocol parser does not properly handle NUL byte when scanning data in quoted strings, leading to out of bounds heap memory writes. Affected Software/OS: 'dovecot' package(s) on Mageia 6, Mageia 7. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-11500 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3GYTZLLDNIFWT7D7JSB25ERJNMOR4CQ3/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KVHY3MU2OK2EWZJFGNDSAOMD42L7DFPX/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YSJVVVRAE3SITC2ZLGCPMFDN3WVYZBWF/ https://security.gentoo.org/glsa/201908-29 https://www.dovecot.org/security.html https://lists.debian.org/debian-lts-announce/2019/08/msg00035.html RedHat Security Advisories: RHSA-2019:2822 https://access.redhat.com/errata/RHSA-2019:2822 RedHat Security Advisories: RHSA-2019:2836 https://access.redhat.com/errata/RHSA-2019:2836 RedHat Security Advisories: RHSA-2019:2885 https://access.redhat.com/errata/RHSA-2019:2885 SuSE Security Announcement: openSUSE-SU-2019:2278 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00024.html SuSE Security Announcement: openSUSE-SU-2019:2281 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00026.html
Copyright	Copyright (C) 2022 Greenbone AG