28 Mar
2019
28 Mar
'19
11:41 a.m.
https://dovecot.org/releases/2.3/dovecot-2.2.36.3.tar.gz https://dovecot.org/releases/2.3/dovecot-2.2.36.3.tar.gz.sig
* CVE-2019-7524: Missing input buffer size validation leads into arbitrary buffer overflow when reading fts or pop3 uidl header from Dovecot index. Exploiting this requires direct write access to the index files.
Aki Tuomi Open-Xchange oy
28 Mar
28 Mar
12:45 p.m.
On 28.3.2019 13.41, Aki Tuomi via dovecot wrote:
Small mistake in the URLs, please use these.
https://dovecot.org/releases/2.2/dovecot-2.2.36.3.tar.gz https://dovecot.org/releases/2.2/dovecot-2.2.36.3.tar.gz.sig
Aki
2170
Age (days ago)
2170
Last active (days ago)
1 comments
1 participants
participants (1)
-
Aki Tuomi