First published: Thu Feb 01 2018(Updated: )
It was discovered that Dovecot incorrectly handled certain authentications. An attacker could possibly use this to cause a denial of service.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/dovecot-core | <1:2.2.27-3ubuntu1.2 | 1:2.2.27-3ubuntu1.2 |
=17.10 | ||
All of | ||
ubuntu/dovecot-core | <1:2.2.22-1ubuntu2.6 | 1:2.2.22-1ubuntu2.6 |
=16.04 | ||
All of | ||
ubuntu/dovecot-core | <1:2.2.9-1ubuntu2.3 | 1:2.2.9-1ubuntu2.3 |
=14.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is USN-3556-1.
The title of the vulnerability is 'USN-3556-1: Dovecot vulnerability'.
The vulnerability involves an issue in Dovecot where it incorrectly handles certain authentications, potentially leading to a denial of service.
An attacker can exploit this vulnerability to cause a denial of service.
To fix this vulnerability, update the dovecot-core package to version 1:2.2.27-3ubuntu1.2 (for Ubuntu 17.10), 1:2.2.22-1ubuntu2.6 (for Ubuntu 16.04), or 1:2.2.9-1ubuntu2.3 (for Ubuntu 14.04).