|Category:||CentOS Local Security Checks|
|Title:||CentOS: Security Advisory for dovecot (CESA-2020:3617)|
|Summary:||The remote host is missing an update for the 'dovecot'; package(s) announced via the CESA-2020:3617 advisory.|
The remote host is missing an update for the 'dovecot'
package(s) announced via the CESA-2020:3617 advisory.
Dovecot is an IMAP server for Linux and other UNIX-like systems, written
primarily with security in mind. It also contains a small POP3 server, and
supports e-mail in either the maildir or mbox format. The SQL drivers and
authentication plug-ins are provided as subpackages.
* dovecot: Resource exhaustion via deeply nested MIME parts
* dovecot: Out of bound reads in dovecot NTLM implementation
* dovecot: Crash due to assert in RPA implementation (CVE-2020-12674)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
'dovecot' package(s) on CentOS 7.
Please install the updated package(s).
Common Vulnerability Exposure (CVE) ID: CVE-2020-12100|
Common Vulnerability Exposure (CVE) ID: CVE-2020-12673
Common Vulnerability Exposure (CVE) ID: CVE-2020-12674
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.