CVE-2020-7957
12.02.2020, 17:15
The IMAP and LMTP components in Dovecot 2.3.9 before 2.3.9.3 mishandle snippet generation when many characters must be read to compute the snippet and a trailing > character exists. This causes a denial of service in which the recipient cannot read all of their messages.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| dovecot | dovecot | 2.3.9 ≤ 𝑥 < 2.3.9.3 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| dovecot23 |
| ||||||||||||||||
| dovecot23-backend-mysql |
| ||||||||||||||||
| dovecot23-backend-pgsql |
| ||||||||||||||||
| dovecot23-backend-sqlite |
| ||||||||||||||||
| dovecot23-devel |
| ||||||||||||||||
| dovecot23-fts |
| ||||||||||||||||
| dovecot23-fts-lucene |
| ||||||||||||||||
| dovecot23-fts-solr |
| ||||||||||||||||
| dovecot23-fts-squat |
|
Common Weakness Enumeration
References