Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2019-11499: Dovecot | Security

In the IMAP Server in Dovecot 2.3.3 through 2.3.5.2, the submission-login component crashes if AUTH PLAIN is attempted over a TLS secured channel with an unacceptable authentication message.

CVE
#auth#ssl

Security

Dovecot was designed since the beginning with security in mind and with many ways to provide privilege separation. Although the code is written with C, it’s a little bit special C variant that makes it much more difficult to write security holes accidentally than with most other C-based projects.

Please see https://www.dovecot.org/bugreport-mail for more information how to report bugs.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907