Alerts This Week
Warning Icon 1 1,295
Alerts This Week
Warning Icon 1 1,295

Oracle Linux 9 ELSA-2026-13857 Dovecot Important DoS Issues

oracle
Calendar Grey May 6, 2026
Oracle Linux Logo Esm H88
Updated dovecot RPMS for Oracle Linux 9 fix important vulnerabilities related to denial of service.
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[1:2.3.16-15.1] - fix CVE-2026-27858: denial of service via crafted message before authentication (RHEL-161639) - fix CVE-2025-59032: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command (RHEL-162287) - fix CVE-2026-27857: denial of service via specially crafted NOOP command (RHEL-161678)

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates/dovecot-2.3.16-15.el9_7.1.src.rpm

x86_64

dovecot-2.3.16-15.el9_7.1.i686.rpm dovecot-2.3.16-15.el9_7.1.x86_64.rpm dovecot-devel-2.3.16-15.el9_7.1.i686.rpm dovecot-devel-2.3.16-15.el9_7.1.x86_64.rpm dovecot-mysql-2.3.16-15.el9_7.1.x86_64.rpm dovecot-pgsql-2.3.16-15.el9_7.1.x86_64.rpm dovecot-pigeonhole-2.3.16-15.el9_7.1.x86_64.rpm

aarch64

dovecot-2.3.16-15.el9_7.1.aarch64.rpm dovecot-devel-2.3.16-15.el9_7.1.aarch64.rpm dovecot-mysql-2.3.16-15.el9_7.1.aarch64.rpm dovecot-pgsql-2.3.16-15.el9_7.1.aarch64.rpm dovecot-pigeonhole-2.3.16-15.el9_7.1.aarch64.rpm

Severity
important
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2025-59032 CVE-2026-27857 CVE-2026-27858

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here