[go: up one dir, main page]
|
|
Log in / Subscribe / Register

dovecot: denial of service

Package(s):dovecot CVE #(s):CVE-2014-3430
Created:May 16, 2014 Updated:March 29, 2015
Description:

From the Mandriva advisory:

Dovecot 1.1 before 2.2.13 and dovecot-ee before 2.1.7.7 and 2.2.x before 2.2.12.12 does not properly close old connections, which allows remote attackers to cause a denial of service (resource consumption) via an incomplete SSL/TLS handshake for an IMAP/POP3 connection (CVE-2014-3430).

Alerts:
Mandriva MDVSA-2015:113 dovecot 2015-03-29
Gentoo 201412-03 dovecot 2014-12-08
Oracle ELSA-2014-0790 dovecot 2014-07-23
Scientific Linux SLSA-2014:0790-1 dovecot 2014-06-25
Oracle ELSA-2014-0790 dovecot 2014-06-25
CentOS CESA-2014:0790 dovecot 2014-06-25
Red Hat RHSA-2014:0790-01 dovecot 2014-06-25
Fedora FEDORA-2014-6331 dovecot 2014-06-17
Debian DSA-2954-1 dovecot 2014-06-09
Mageia MGASA-2014-0223 dovecot 2014-05-17
Fedora FEDORA-2014-6338 dovecot 2014-05-18
Ubuntu USN-2213-1 dovecot 2014-05-15
Mandriva MDVSA-2014:099 dovecot 2014-05-16
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds