Alerts This Week
Warning Icon 1 684
Alerts This Week
Warning Icon 1 684

Ubuntu 14.04 ESM USN-4674-2 Moderate: Dovecot DoS Exploit Information

Calendar Jan 04, 2021 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory denial of service Ubuntu dos threat dovecot Ubuntu 14.04 MIME handling mime handling
Dovecot could be made to denial of service if it received a specially crafted MIME. 
=========================================================================Ubuntu Security Notice USN-4674-2
January 04, 2021

dovecot vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 14.04 ESM

Summary:

Dovecot could be made to denial of service if it received a specially
crafted MIME.

Software Description:
- dovecot: IMAP and POP3 email server

Details:

USN-4674-1 fixed a vulnerability in Dovecot. This update provides
the corresponding update for Ubuntu 14.04 ESM.

Original advisory details:

 Innokentii Sennovskiy discovered that Dovecot incorrectly handled MIME
 parsing. A remote attacker could possibly use this issue to cause Dovecot
 to crash, resulting in a denial of service. (CVE-2020-25275)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 ESM:
  dovecot-core                    1:2.2.9-1ubuntu2.6+esm4

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-4674-2
  https://ubuntu.com/security/notices/USN-4674-1
  CVE-2020-25275

Ubuntu 14.04 ESM USN-4674-2 Moderate: Dovecot DoS Exploit Information

ubuntu
Calendar Grey January 4, 2021
Dist Ubuntu Esm H88
A security flaw in Dovecot for Ubuntu 14.04 ESM has the potential to cause a denial of service through specially created MIME types. It is advisable to apply updates for enhanced security.
Dovecot could be made to denial of service if it received a specially crafted MIME.

Summary

Topics%20covered

Topics Covered

security advisory denial of service Ubuntu dos threat dovecot Ubuntu 14.04 MIME handling mime handling

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 ESM: dovecot-core 1:2.2.9-1ubuntu2.6+esm4 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4674-2

https://ubuntu.com/security/notices/USN-4674-1

CVE-2020-25275

January 04, 2021

Topics%20covered

Topics Covered

security advisory denial of service Ubuntu dos threat dovecot Ubuntu 14.04 MIME handling mime handling

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here