[CLSA-2022:1653506545] Fixed CVE-2021-33515 in dovecot
Type:
security
Severity:
Moderate
Release date:
2022-05-25
Description:
- CVE-2021-33515: fix possible command injection by stopping reading commands when input was locked by the STARTTLS command
Updated packages:
  • dovecot-devel-2.3.8-9.el8.tuxcare.els1.i686.rpm
    sha:59fcaa14e99baecddd879a7e0ae1cd9813826d33
  • dovecot-pgsql-2.3.8-9.el8.tuxcare.els1.x86_64.rpm
    sha:831a7257fb671949d4ef419b9eaaaa47c0b61309
  • dovecot-pigeonhole-2.3.8-9.el8.tuxcare.els1.x86_64.rpm
    sha:83c6485f8a2881881618e35938468d8e8cad10af
  • dovecot-mysql-2.3.8-9.el8.tuxcare.els1.x86_64.rpm
    sha:0b170893285de7cac7629a98cc30390239a586d6
  • dovecot-devel-2.3.8-9.el8.tuxcare.els1.x86_64.rpm
    sha:d842c2c9f7bffcd7c121a9ed19dd48ae977c874c
  • dovecot-2.3.8-9.el8.tuxcare.els1.x86_64.rpm
    sha:a7adee79a4435600a9f10627032075a5e7f9d58e
  • dovecot-2.3.8-9.el8.tuxcare.els1.i686.rpm
    sha:6b984d2d4671ffb8bf3e8c1d62c79ab8b4bbc03f
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.