Bug 10141

Summary: [UPDATE REQUEST] Update dovecot 2.2.36.4 (CVE-2019-11500)
Product: [ROSA-based products] ROSA Fresh Reporter: Zombie Ryushu <zombie.ryushu>
Component: Net (ssh, samba, ssl, NM...)Assignee: ROSA Linux Bugs <bugs>
Status: RESOLVED DUPLICATE QA Contact: ROSA Linux Bugs <bugs>
Severity: normal    
Priority: Normal CC: alzim, andrey.bondrov, denis.silakov, mc2374
Version: All   
Target Milestone: ---   
Hardware: All   
OS: Linux   
URL: https://advisories.mageia.org/MGASA-2019-0261.html
Whiteboard:
Platform: --- ROSA Vulnerability identifier: CVE-2019-11500
RPM Package: dovecot ISO-related:
Bad POT generating: Upstream:

Description Zombie Ryushu 2019-09-08 22:01:11 MSK 
IMAP protocol parser does not properly handle NUL byte when scanning data
in quoted strings, leading to out of bounds heap memory writes.
Comment 1 Алзим 2019-09-08 22:04:13 MSK 

*** This bug has been marked as a duplicate of bug 10102 ***