CVE-2020-12673

In Dovecot before 2.3.11.3, sending a specially formatted NTLM request will crash the auth service because of an out-of-bounds read.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
Affected Products (NVD)
VendorProductVersion
dovecotdovecot
𝑥
< 2.3.11.3
debiandebian_linux
9.0
debiandebian_linux
10.0
canonicalubuntu_linux
14.04
canonicalubuntu_linux
16.04
canonicalubuntu_linux
18.04
canonicalubuntu_linux
20.04
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
dovecot
bookworm
1:2.3.19.1+dfsg1-2.1+deb12u1
fixed
bookworm (security)
1:2.3.19.1+dfsg1-2.1+deb12u1
fixed
bullseye
1:2.3.13+dfsg1-2+deb11u1
fixed
bullseye (security)
1:2.3.13+dfsg1-2+deb11u2
fixed
sid
1:2.3.21.1+dfsg1-1
fixed
trixie
1:2.3.21.1+dfsg1-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
dovecot
bionic
Fixed 1:2.2.33.2-1ubuntu4.6
released
focal
Fixed 1:2.3.7.2-1ubuntu3.2
released
trusty
Fixed 1:2.2.9-1ubuntu2.6+esm3
released
xenial
Fixed 1:2.2.22-1ubuntu2.13
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
dovecot22
suse enterprise sap 12 SP2
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP3
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP4
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP5
2.2.31-19.22.1
fixed
suse enterprise server 12 SP2
2.2.31-19.22.1
fixed
suse enterprise server 12 SP3
2.2.31-19.22.1
fixed
suse enterprise server 12 SP4
2.2.31-19.22.1
fixed
suse enterprise server 12 SP5
2.2.31-19.22.1
fixed
dovecot22-backend-mysql
suse enterprise sap 12 SP2
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP3
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP4
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP5
2.2.31-19.22.1
fixed
suse enterprise server 12 SP2
2.2.31-19.22.1
fixed
suse enterprise server 12 SP3
2.2.31-19.22.1
fixed
suse enterprise server 12 SP4
2.2.31-19.22.1
fixed
suse enterprise server 12 SP5
2.2.31-19.22.1
fixed
dovecot22-backend-pgsql
suse enterprise sap 12 SP2
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP3
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP4
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP5
2.2.31-19.22.1
fixed
suse enterprise server 12 SP2
2.2.31-19.22.1
fixed
suse enterprise server 12 SP3
2.2.31-19.22.1
fixed
suse enterprise server 12 SP4
2.2.31-19.22.1
fixed
suse enterprise server 12 SP5
2.2.31-19.22.1
fixed
dovecot22-backend-sqlite
suse enterprise sap 12 SP2
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP3
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP4
2.2.31-19.22.1
fixed
suse enterprise sap 12 SP5
2.2.31-19.22.1
fixed
suse enterprise server 12 SP2
2.2.31-19.22.1
fixed
suse enterprise server 12 SP3
2.2.31-19.22.1
fixed
suse enterprise server 12 SP4
2.2.31-19.22.1
fixed
suse enterprise server 12 SP5
2.2.31-19.22.1
fixed
dovecot23
suse enterprise sap 15 SP1
2.3.10-16.1
fixed
suse enterprise sap 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP7
2.3.11.3-17.5.1
fixed
suse enterprise server 15
2.3.10-4.27.1
fixed
suse enterprise server 15 SP1
2.3.10-16.1
fixed
suse enterprise server 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP7
2.3.11.3-17.5.1
fixed
dovecot23-backend-mysql
suse enterprise sap 15 SP1
2.3.10-16.1
fixed
suse enterprise sap 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP7
2.3.11.3-17.5.1
fixed
suse enterprise server 15
2.3.10-4.27.1
fixed
suse enterprise server 15 SP1
2.3.10-16.1
fixed
suse enterprise server 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP7
2.3.11.3-17.5.1
fixed
dovecot23-backend-pgsql
suse enterprise sap 15 SP1
2.3.10-16.1
fixed
suse enterprise sap 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP7
2.3.11.3-17.5.1
fixed
suse enterprise server 15
2.3.10-4.27.1
fixed
suse enterprise server 15 SP1
2.3.10-16.1
fixed
suse enterprise server 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP7
2.3.11.3-17.5.1
fixed
dovecot23-backend-sqlite
suse enterprise sap 15 SP1
2.3.10-16.1
fixed
suse enterprise sap 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP7
2.3.11.3-17.5.1
fixed
suse enterprise server 15
2.3.10-4.27.1
fixed
suse enterprise server 15 SP1
2.3.10-16.1
fixed
suse enterprise server 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP7
2.3.11.3-17.5.1
fixed
dovecot23-devel
suse enterprise sap 15 SP1
2.3.10-16.1
fixed
suse enterprise sap 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP7
2.3.11.3-17.5.1
fixed
suse enterprise server 15
2.3.10-4.27.1
fixed
suse enterprise server 15 SP1
2.3.10-16.1
fixed
suse enterprise server 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP7
2.3.11.3-17.5.1
fixed
dovecot23-fts
suse enterprise sap 15 SP1
2.3.10-16.1
fixed
suse enterprise sap 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP7
2.3.11.3-17.5.1
fixed
suse enterprise server 15
2.3.10-4.27.1
fixed
suse enterprise server 15 SP1
2.3.10-16.1
fixed
suse enterprise server 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP7
2.3.11.3-17.5.1
fixed
dovecot23-fts-lucene
suse enterprise sap 15 SP1
2.3.10-16.1
fixed
suse enterprise sap 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP7
2.3.11.3-17.5.1
fixed
suse enterprise server 15
2.3.10-4.27.1
fixed
suse enterprise server 15 SP1
2.3.10-16.1
fixed
suse enterprise server 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP7
2.3.11.3-17.5.1
fixed
dovecot23-fts-solr
suse enterprise sap 15 SP1
2.3.10-16.1
fixed
suse enterprise sap 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP7
2.3.11.3-17.5.1
fixed
suse enterprise server 15
2.3.10-4.27.1
fixed
suse enterprise server 15 SP1
2.3.10-16.1
fixed
suse enterprise server 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP7
2.3.11.3-17.5.1
fixed
dovecot23-fts-squat
suse enterprise sap 15 SP1
2.3.10-16.1
fixed
suse enterprise sap 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise sap 15 SP7
2.3.11.3-17.5.1
fixed
suse enterprise server 15
2.3.10-4.27.1
fixed
suse enterprise server 15 SP1
2.3.10-16.1
fixed
suse enterprise server 15 SP2
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP3
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP4
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP5
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP6
2.3.11.3-17.5.1
fixed
suse enterprise server 15 SP7
2.3.11.3-17.5.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
dovecot
RHEL 7
1:2.2.36-6.el7_8.1
fixed
RHEL 8
1:2.3.8-2.el8_2.2
fixed
RHEL 8.0 E4S
1:2.2.36-5.el8_0.3
fixed
RHEL 8.1 E4S
1:2.2.36-10.el8_1.2
fixed
RHEL 8.1 EUS
1:2.2.36-10.el8_1.2
fixed
RHEL 8.2 AUS
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 E4S
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 EUS
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 TUS
1:2.3.8-2.el8_2.2
fixed
dovecot-devel
RHEL 7
1:2.2.36-6.el7_8.1
fixed
RHEL 8
1:2.3.8-2.el8_2.2
fixed
RHEL 8.1 E4S
1:2.2.36-10.el8_1.2
fixed
RHEL 8.1 EUS
1:2.2.36-10.el8_1.2
fixed
RHEL 8.2 AUS
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 E4S
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 EUS
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 TUS
1:2.3.8-2.el8_2.2
fixed
dovecot-mysql
RHEL 7
1:2.2.36-6.el7_8.1
fixed
RHEL 8
1:2.3.8-2.el8_2.2
fixed
RHEL 8.0 E4S
1:2.2.36-5.el8_0.3
fixed
RHEL 8.1 E4S
1:2.2.36-10.el8_1.2
fixed
RHEL 8.1 EUS
1:2.2.36-10.el8_1.2
fixed
RHEL 8.2 AUS
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 E4S
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 EUS
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 TUS
1:2.3.8-2.el8_2.2
fixed
dovecot-pgsql
RHEL 7
1:2.2.36-6.el7_8.1
fixed
RHEL 8
1:2.3.8-2.el8_2.2
fixed
RHEL 8.0 E4S
1:2.2.36-5.el8_0.3
fixed
RHEL 8.1 E4S
1:2.2.36-10.el8_1.2
fixed
RHEL 8.1 EUS
1:2.2.36-10.el8_1.2
fixed
RHEL 8.2 AUS
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 E4S
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 EUS
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 TUS
1:2.3.8-2.el8_2.2
fixed
dovecot-pigeonhole
RHEL 7
1:2.2.36-6.el7_8.1
fixed
RHEL 8
1:2.3.8-2.el8_2.2
fixed
RHEL 8.1 E4S
1:2.2.36-10.el8_1.2
fixed
RHEL 8.1 EUS
1:2.2.36-10.el8_1.2
fixed
RHEL 8.2 AUS
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 E4S
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 EUS
1:2.3.8-2.el8_2.2
fixed
RHEL 8.2 TUS
1:2.3.8-2.el8_2.2
fixed
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00048.html
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00059.html
https://dovecot.org/security
https://lists.debian.org/debian-lts-announce/2020/08/msg00024.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4AAX2MJEULPVSRZOBX3PNPFSYP4FM4TT/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EYZU6CHA3VMYYAUCMHSCCQKJEVEIKPQ2/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XKKAL3OMG76ZZ7CIEMQP2K6KCTD2RAKE/
https://security.gentoo.org/glsa/202009-02
https://usn.ubuntu.com/4456-1/
https://usn.ubuntu.com/4456-2/
https://www.debian.org/security/2020/dsa-4745
https://www.openwall.com/lists/oss-security/2020/08/12/2
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00048.html
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00059.html
https://dovecot.org/security
https://lists.debian.org/debian-lts-announce/2020/08/msg00024.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4AAX2MJEULPVSRZOBX3PNPFSYP4FM4TT/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EYZU6CHA3VMYYAUCMHSCCQKJEVEIKPQ2/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XKKAL3OMG76ZZ7CIEMQP2K6KCTD2RAKE/
https://security.gentoo.org/glsa/202009-02
https://usn.ubuntu.com/4456-1/
https://usn.ubuntu.com/4456-2/
https://www.debian.org/security/2020/dsa-4745
https://www.openwall.com/lists/oss-security/2020/08/12/2