Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 564
Alerts This Week
Warning Icon 1 564

Oracle Linux Dovecot Important Denial of Service Fix ELSA-2026-19149

oracle
Calendar Grey July 17, 2026
Scroller Oracle
Explore Oracle Linux 10 advisory ELSA-2026-19149 addressing important Dovecot denial of service issues and security updates.
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

Summary

[1:2.3.21-19] - update release for rebuild [1:2.3.21-18] - fix CVE-2026-27858: denial of service via crafted message before authentication (RHEL-161626) - fix CVE-2025-59032: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command (RHEL-162274) - fix CVE-2026-27857: denial of service via specially crafted NOOP command (RHEL-161665)

SRPMs

http://oss.oracle.com/ol10/SRPMS-updates/dovecot-2.3.21-19.el10_2.src.rpm

x86_64

dovecot-2.3.21-19.el10_2.x86_64.rpm dovecot-devel-2.3.21-19.el10_2.x86_64.rpm dovecot-mysql-2.3.21-19.el10_2.x86_64.rpm dovecot-pgsql-2.3.21-19.el10_2.x86_64.rpm dovecot-pigeonhole-2.3.21-19.el10_2.x86_64.rpm

aarch64

dovecot-2.3.21-19.el10_2.aarch64.rpm dovecot-devel-2.3.21-19.el10_2.aarch64.rpm dovecot-mysql-2.3.21-19.el10_2.aarch64.rpm dovecot-pgsql-2.3.21-19.el10_2.aarch64.rpm dovecot-pigeonhole-2.3.21-19.el10_2.aarch64.rpm

Severity
important
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2025-59032 CVE-2026-27857 CVE-2026-27858

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.