[Dovecot] Heartbleed openssl vulnerability?

John Rowe J.M.Rowe at exeter.ac.uk
Tue Apr 8 17:00:10 UTC 2014


Do we know if dovecot is vulnerable to the heartbleed SSL problem?

I'm running dovecot-2.0.9 and openssl-1.01, the latter being
intrinsically vulnerable. An on-line tool says that my machine is not
affected on port 993 but it would be nice to know for sure if we were
vulnerable for a while. (Naturally I've blocked it anyway!).

Thanks

John




More information about the dovecot mailing list