Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 2 articles for you...
219
security advisorydenial of serviceimportantRocky Linux 9 Dovecot Important Denial of Service Vuln RLSA-2026-13857
Important: dovecot security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:13857", "synopsis": "Important: dovecot security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for dovecot.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. \n\nSecurity Fix(es):\n\n* dovecot: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command (CVE-2025-59032)\n\n* dovecot: denial of service via crafted message before authentication (CVE-2026-27858)\n\n* dovecot: denial of service via specially crafted NOOP command (CVE-2026-27857)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2452172", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452172", "description": ""}, {"ticket": "2452175", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452175", "description": ""}, {"ticket": "2452179", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452179", "description": ""}], "cves": [{"name": "CVE-2025-59032", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59032", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-229"}, {"name": "CVE-2026-27857", "sourceBy": "MITRE", "sourceLink":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27857", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}, {"name": "CVE-2026-27858", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27858", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}], "references": [], "publishedAt": "2026-05-07T12:03:39.445016Z", "rpms": {"Rocky Linux 9": {"nvras": ["dovecot-1:2.3.16-15.el9_7.1.aarch64.rpm", "dovecot-1:2.3.16-15.el9_7.1.i686.rpm", "dovecot-1:2.3.16-15.el9_7.1.ppc64le.rpm", "dovecot-1:2.3.16-15.el9_7.1.s390x.rpm", "dovecot-1:2.3.16-15.el9_7.1.src.rpm", "dovecot-1:2.3.16-15.el9_7.1.x86_64.rpm", "dovecot-debuginfo-1:2.3.16-15.el9_7.1.aarch64.rpm", "dovecot-debuginfo-1:2.3.16-15.el9_7.1.i686.rpm", "dovecot-debuginfo-1:2.3.16-15.el9_7.1.ppc64le.rpm", "dovecot-debuginfo-1:2.3.16-15.el9_7.1.s390x.rpm", "dovecot-debuginfo-1:2.3.16-15.el9_7.1.x86_64.rpm", "dovecot-debugsource-1:2.3.16-15.el9_7.1.aarch64.rpm", "dovecot-debugsource-1:2.3.16-15.el9_7.1.i686.rpm", "dovecot-debugsource-1:2.3.16-15.el9_7.1.ppc64le.rpm", "dovecot-debugsource-1:2.3.16-15.el9_7.1.s390x.rpm", "dovecot-debugsource-1:2.3.16-15.el9_7.1.x86_64.rpm", "dovecot-devel-1:2.3.16-15.el9_7.1.aarch64.rpm", "dovecot-devel-1:2.3.16-15.el9_7.1.i686.rpm", "dovecot-devel-1:2.3.16-15.el9_7.1.ppc64le.rpm", "dovecot-devel-1:2.3.16-15.el9_7.1.s390x.rpm", "dovecot-devel-1:2.3.16-15.el9_7.1.x86_64.rpm", "dovecot-mysql-1:2.3.16-15.el9_7.1.aarch64.rpm", "dovecot-mysql-1:2.3.16-15.el9_7.1.ppc64le.rpm", "dovecot-mysql-1:2.3.16-15.el9_7.1.s390x.rpm", "dovecot-mysql-1:2.3.16-15.el9_7.1.x86_64.rpm", "dovecot-mysql-debuginfo-1:2.3.16-15.el9_7.1.aarch64.rpm", "dovecot-mysql-debuginfo-1:2.3.16-15.el9_7.1.ppc64le.rpm", "dovecot-mysql-debuginfo-1:2.3.16-15.el9_7.1.s390x.rpm", "dovecot-mysql-debuginfo-1:2.3.16-15.el9_7.1.x86_64.rpm", "dovecot-pgsql-1:2.3.16-15.el9_7.1.aarch64.rpm","dovecot-pgsql-1:2.3.16-15.el9_7.1.ppc64le.rpm", "dovecot-pgsql-1:2.3.16-15.el9_7.1.s390x.rpm", "dovecot-pgsql-1:2.3.16-15.el9_7.1.x86_64.rpm", "dovecot-pgsql-debuginfo-1:2.3.16-15.el9_7.1.aarch64.rpm", "dovecot-pgsql-debuginfo-1:2.3.16-15.el9_7.1.ppc64le.rpm", "dovecot-pgsql-debuginfo-1:2.3.16-15.el9_7.1.s390x.rpm", "dovecot-pgsql-debuginfo-1:2.3.16-15.el9_7.1.x86_64.rpm", "dovecot-pigeonhole-1:2.3.16-15.el9_7.1.aarch64.rpm", "dovecot-pigeonhole-1:2.3.16-15.el9_7.1.ppc64le.rpm", "dovecot-pigeonhole-1:2.3.16-15.el9_7.1.s390x.rpm", "dovecot-pigeonhole-1:2.3.16-15.el9_7.1.x86_64.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.16-15.el9_7.1.aarch64.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.16-15.el9_7.1.ppc64le.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.16-15.el9_7.1.s390x.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.16-15.el9_7.1.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. An important security update for dovecot on Rocky Linux 9 addressing denial of service by crafted requests. Read more.. Dovecot Security, Rocky Linux Update, IMAP Server Security. . Severity: Important. LinuxSecurity.com Team
May 07, 2026
•Important
Rocky Linux
219
security advisorydenial of serviceimportantRocky Linux 8 RLSA-2026-14833 Dovecot Major Vulnerability Found in DoS
Important: dovecot security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:13830", "synopsis": "Important: dovecot security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for dovecot.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. \n\nSecurity Fix(es):\n\n* dovecot: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command (CVE-2025-59032)\n\n* dovecot: denial of service via crafted message before authentication (CVE-2026-27858)\n\n* dovecot: denial of service via specially crafted NOOP command (CVE-2026-27857)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2452172", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452172", "description": ""}, {"ticket": "2452175", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452175", "description": ""}, {"ticket": "2452179", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452179", "description": ""}], "cves": [{"name": "CVE-2025-59032", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59032", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-229"}, {"name": "CVE-2026-27857", "sourceBy": "MITRE", "sourceLink":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27857", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}, {"name": "CVE-2026-27858", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27858", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}], "references": [], "publishedAt": "2026-05-07T06:00:59.922786Z", "rpms": {"Rocky Linux 8": {"nvras": ["dovecot-1:2.3.16-7.el8_10.aarch64.rpm", "dovecot-1:2.3.16-7.el8_10.i686.rpm", "dovecot-1:2.3.16-7.el8_10.src.rpm", "dovecot-1:2.3.16-7.el8_10.x86_64.rpm", "dovecot-debuginfo-1:2.3.16-7.el8_10.aarch64.rpm", "dovecot-debuginfo-1:2.3.16-7.el8_10.i686.rpm", "dovecot-debuginfo-1:2.3.16-7.el8_10.x86_64.rpm", "dovecot-debugsource-1:2.3.16-7.el8_10.aarch64.rpm", "dovecot-debugsource-1:2.3.16-7.el8_10.i686.rpm", "dovecot-debugsource-1:2.3.16-7.el8_10.x86_64.rpm", "dovecot-devel-1:2.3.16-7.el8_10.aarch64.rpm", "dovecot-devel-1:2.3.16-7.el8_10.i686.rpm", "dovecot-devel-1:2.3.16-7.el8_10.x86_64.rpm", "dovecot-mysql-1:2.3.16-7.el8_10.aarch64.rpm", "dovecot-mysql-1:2.3.16-7.el8_10.x86_64.rpm", "dovecot-mysql-debuginfo-1:2.3.16-7.el8_10.aarch64.rpm", "dovecot-mysql-debuginfo-1:2.3.16-7.el8_10.x86_64.rpm", "dovecot-pgsql-1:2.3.16-7.el8_10.aarch64.rpm", "dovecot-pgsql-1:2.3.16-7.el8_10.x86_64.rpm", "dovecot-pgsql-debuginfo-1:2.3.16-7.el8_10.aarch64.rpm", "dovecot-pgsql-debuginfo-1:2.3.16-7.el8_10.x86_64.rpm", "dovecot-pigeonhole-1:2.3.16-7.el8_10.aarch64.rpm", "dovecot-pigeonhole-1:2.3.16-7.el8_10.x86_64.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.16-7.el8_10.aarch64.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.16-7.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Stay updated on important Dovecot security fixes for Rocky Linux addressing denial of service threats with this advisory.. Dovecot security update, Rocky Linux advisory, denial of service fix. . Severity: Important. LinuxSecurity.com Team
May 07, 2026
•Important
Rocky Linux
219
security advisorydenial of serviceimportantRocky Linux 10 Dovecot Important Security Update RLSA-2026-13498
Important: dovecot security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:13498", "synopsis": "Important: dovecot security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for dovecot.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. \n\nSecurity Fix(es):\n\n* dovecot: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command (CVE-2025-59032)\n\n* dovecot: denial of service via crafted message before authentication (CVE-2026-27858)\n\n* dovecot: denial of service via specially crafted NOOP command (CVE-2026-27857)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2452175", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452175", "description": ""}, {"ticket": "2452179", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452179", "description": ""}, {"ticket": "2452172", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452172", "description": ""}], "cves": [{"name": "CVE-2025-59032", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59032", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-229"}, {"name": "CVE-2026-27857", "sourceBy": "MITRE", "sourceLink":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27857", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}, {"name": "CVE-2026-27858", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27858", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}], "references": [], "publishedAt": "2026-05-06T12:05:16.751656Z", "rpms": {"Rocky Linux 10": {"nvras": ["dovecot-devel-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.src.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.ppc64le.rpm","dovecot-pgsql-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Dovecot security update for Rocky Linux addresses critical service denial vulnerabilities with important patches included.. Dovecot security patch Rocky Linux DoS response update. . Severity: Important. LinuxSecurity.com Team
May 06, 2026
•Important
Rocky Linux
219
security advisorydenial of serviceimportantRocky Linux 10 Dovecot Major Service Disruption Alert RLSA-2026-14330
Important: dovecot security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:13498", "synopsis": "Important: dovecot security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for dovecot.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. \n\nSecurity Fix(es):\n\n* dovecot: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command (CVE-2025-59032)\n\n* dovecot: denial of service via crafted message before authentication (CVE-2026-27858)\n\n* dovecot: denial of service via specially crafted NOOP command (CVE-2026-27857)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2452175", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452175", "description": ""}, {"ticket": "2452179", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452179", "description": ""}, {"ticket": "2452172", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452172", "description": ""}], "cves": [{"name": "CVE-2025-59032", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59032", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-229"}, {"name": "CVE-2026-27857", "sourceBy": "MITRE", "sourceLink":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27857", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}, {"name": "CVE-2026-27858", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27858", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}], "references": [], "publishedAt": "2026-05-06T12:05:16.751656Z", "rpms": {"Rocky Linux 10": {"nvras": ["dovecot-devel-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.src.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.ppc64le.rpm","dovecot-pgsql-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A critical update for dovecot on Rocky Linux addresses crucial denial of service vulnerabilities requiring immediate attention.. Dovecot Security, Rocky Linux Update, Denial Of Service, Server Security. . Severity: Important. LinuxSecurity.com Team
May 06, 2026
•Important
Rocky Linux
219
security advisorydenial of serviceimportantRaven OS 11 RLSB-2028-15674 Postfix Major Third-Party Service Issues
Important: dovecot security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:13498", "synopsis": "Important: dovecot security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for dovecot.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. \n\nSecurity Fix(es):\n\n* dovecot: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command (CVE-2025-59032)\n\n* dovecot: denial of service via crafted message before authentication (CVE-2026-27858)\n\n* dovecot: denial of service via specially crafted NOOP command (CVE-2026-27857)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2452175", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452175", "description": ""}, {"ticket": "2452179", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452179", "description": ""}, {"ticket": "2452172", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452172", "description": ""}], "cves": [{"name": "CVE-2025-59032", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59032", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-229"}, {"name": "CVE-2026-27857", "sourceBy": "MITRE", "sourceLink":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27857", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}, {"name": "CVE-2026-27858", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27858", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}], "references": [], "publishedAt": "2026-05-06T12:05:16.751656Z", "rpms": {"Rocky Linux 10": {"nvras": ["dovecot-devel-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.src.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.ppc64le.rpm","dovecot-pgsql-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Dovecot security update for Rocky Linux addressing important denial of service vulnerabilities with recommended fixes.. Dovecot, Rocky Linux, security update, important vulnerabilities. . Severity: Important. LinuxSecurity.com Team
May 06, 2026
•Important
Rocky Linux
219
security advisorydenial of serviceimportantRocky Linux 10 Dovecot Key Security Patch RLSA-2026-13498 DoS Vulnerability
Important: dovecot security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:13498", "synopsis": "Important: dovecot security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for dovecot.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. \n\nSecurity Fix(es):\n\n* dovecot: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command (CVE-2025-59032)\n\n* dovecot: denial of service via crafted message before authentication (CVE-2026-27858)\n\n* dovecot: denial of service via specially crafted NOOP command (CVE-2026-27857)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2452175", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452175", "description": ""}, {"ticket": "2452179", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452179", "description": ""}, {"ticket": "2452172", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2452172", "description": ""}], "cves": [{"name": "CVE-2025-59032", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59032", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-229"}, {"name": "CVE-2026-27857", "sourceBy": "MITRE", "sourceLink":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27857", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}, {"name": "CVE-2026-27858", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27858", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}], "references": [], "publishedAt": "2026-05-06T12:05:16.751656Z", "rpms": {"Rocky Linux 10": {"nvras": ["dovecot-devel-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.src.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-mysql-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-mysql-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-debugsource-1:2.3.21-16.el10_1.1.ppc64le.rpm","dovecot-pgsql-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pgsql-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pgsql-debuginfo-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-1:2.3.21-16.el10_1.1.s390x.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.aarch64.rpm", "dovecot-devel-1:2.3.21-16.el10_1.1.ppc64le.rpm", "dovecot-pigeonhole-debuginfo-1:2.3.21-16.el10_1.1.x86_64.rpm", "dovecot-debuginfo-1:2.3.21-16.el10_1.1.s390x.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Important Dovecot security update available for Rocky Linux 10 addressing denial of service vulnerabilities. Act now!. Dovecot Security Update,Rocky Linux 10,Important Security Advisories. . Severity: Important. LinuxSecurity.com Team
May 06, 2026
•Important
Rocky Linux
98
security advisorymoderatedenial of serviceRed Hat Enterprise Linux 8 Advisory RHSA-2020:4497-01 Moderate SASL DoS
An update for cyrus-sasl is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: cyrus-sasl security, bug fix, and enhancement update Advisory ID: RHSA-2020:4497-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:4497 Issue date: 2020-11-03 CVE Names: CVE-2019-19906 ==================================================================== 1. Summary: An update for cyrus-sasl is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: The cyrus-sasl packages contain the Cyrus implementation of Simple Authentication and Security Layer (SASL). SASL is a method for adding authentication support to connection-based protocols. Security Fix(es): * cyrus-sasl: denial of service in _sasl_add_string function (CVE-2019-19906) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section. 4.Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1791854 - CVE-2019-19906 cyrus-sasl: denial of service in _sasl_add_string function 1817054 - RFE: support for Channel Bindings in SASL/GSSAPI 1822133 - Fix GSS-SPNEGO in TLS with maxssf=0 to work against Windows servers 6. Package List: Red Hat Enterprise Linux AppStream (v.8): aarch64: cyrus-sasl-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-debugsource-2.1.27-5.el8.aarch64.rpm cyrus-sasl-devel-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-gs2-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-gssapi-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-ldap-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-lib-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-md5-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-ntlm-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-plain-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-scram-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-sql-2.1.27-5.el8.aarch64.rpm cyrus-sasl-sql-debuginfo-2.1.27-5.el8.aarch64.rpm ppc64le: cyrus-sasl-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-debugsource-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-devel-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-gs2-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-gssapi-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-ldap-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-lib-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-md5-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-ntlm-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-plain-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-scram-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-sql-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-sql-debuginfo-2.1.27-5.el8.ppc64le.rpm s390x: cyrus-sasl-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-debugsource-2.1.27-5.el8.s390x.rpm cyrus-sasl-devel-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-gs2-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-gssapi-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-ldap-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-lib-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-md5-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-ntlm-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-plain-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-scram-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-sql-2.1.27-5.el8.s390x.rpm cyrus-sasl-sql-debuginfo-2.1.27-5.el8.s390x.rpm x86_64: cyrus-sasl-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-debugsource-2.1.27-5.el8.i686.rpm cyrus-sasl-debugsource-2.1.27-5.el8.x86_64.rpm cyrus-sasl-devel-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-devel-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-gs2-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-gs2-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-gssapi-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-gssapi-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-ldap-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-ldap-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-lib-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-lib-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-md5-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-md5-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-ntlm-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-ntlm-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-plain-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-plain-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-scram-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-scram-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-sql-2.1.27-5.el8.i686.rpm cyrus-sasl-sql-2.1.27-5.el8.x86_64.rpm cyrus-sasl-sql-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-sql-debuginfo-2.1.27-5.el8.x86_64.rpm Red Hat Enterprise Linux BaseOS (v.8): Source: cyrus-sasl-2.1.27-5.el8.src.rpm aarch64: cyrus-sasl-2.1.27-5.el8.aarch64.rpm cyrus-sasl-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-debugsource-2.1.27-5.el8.aarch64.rpm cyrus-sasl-devel-2.1.27-5.el8.aarch64.rpm cyrus-sasl-devel-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-gs2-2.1.27-5.el8.aarch64.rpm cyrus-sasl-gs2-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-gssapi-2.1.27-5.el8.aarch64.rpm cyrus-sasl-gssapi-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-ldap-2.1.27-5.el8.aarch64.rpm cyrus-sasl-ldap-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-lib-2.1.27-5.el8.aarch64.rpm cyrus-sasl-lib-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-md5-2.1.27-5.el8.aarch64.rpm cyrus-sasl-md5-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-ntlm-2.1.27-5.el8.aarch64.rpm cyrus-sasl-ntlm-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-plain-2.1.27-5.el8.aarch64.rpm cyrus-sasl-plain-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-scram-2.1.27-5.el8.aarch64.rpm cyrus-sasl-scram-debuginfo-2.1.27-5.el8.aarch64.rpm cyrus-sasl-sql-debuginfo-2.1.27-5.el8.aarch64.rpm ppc64le: cyrus-sasl-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-debugsource-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-devel-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-devel-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-gs2-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-gs2-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-gssapi-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-gssapi-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-ldap-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-ldap-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-lib-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-lib-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-md5-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-md5-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-ntlm-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-ntlm-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-plain-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-plain-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-scram-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-scram-debuginfo-2.1.27-5.el8.ppc64le.rpm cyrus-sasl-sql-debuginfo-2.1.27-5.el8.ppc64le.rpm s390x: cyrus-sasl-2.1.27-5.el8.s390x.rpm cyrus-sasl-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-debugsource-2.1.27-5.el8.s390x.rpm cyrus-sasl-devel-2.1.27-5.el8.s390x.rpm cyrus-sasl-devel-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-gs2-2.1.27-5.el8.s390x.rpm cyrus-sasl-gs2-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-gssapi-2.1.27-5.el8.s390x.rpm cyrus-sasl-gssapi-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-ldap-2.1.27-5.el8.s390x.rpm cyrus-sasl-ldap-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-lib-2.1.27-5.el8.s390x.rpm cyrus-sasl-lib-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-md5-2.1.27-5.el8.s390x.rpm cyrus-sasl-md5-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-ntlm-2.1.27-5.el8.s390x.rpm cyrus-sasl-ntlm-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-plain-2.1.27-5.el8.s390x.rpm cyrus-sasl-plain-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-scram-2.1.27-5.el8.s390x.rpm cyrus-sasl-scram-debuginfo-2.1.27-5.el8.s390x.rpm cyrus-sasl-sql-debuginfo-2.1.27-5.el8.s390x.rpm x86_64: cyrus-sasl-2.1.27-5.el8.i686.rpm cyrus-sasl-2.1.27-5.el8.x86_64.rpm cyrus-sasl-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-debugsource-2.1.27-5.el8.i686.rpm cyrus-sasl-debugsource-2.1.27-5.el8.x86_64.rpm cyrus-sasl-devel-2.1.27-5.el8.i686.rpm cyrus-sasl-devel-2.1.27-5.el8.x86_64.rpm cyrus-sasl-devel-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-devel-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-gs2-2.1.27-5.el8.i686.rpm cyrus-sasl-gs2-2.1.27-5.el8.x86_64.rpm cyrus-sasl-gs2-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-gs2-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-gssapi-2.1.27-5.el8.i686.rpm cyrus-sasl-gssapi-2.1.27-5.el8.x86_64.rpm cyrus-sasl-gssapi-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-gssapi-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-ldap-2.1.27-5.el8.i686.rpm cyrus-sasl-ldap-2.1.27-5.el8.x86_64.rpm cyrus-sasl-ldap-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-ldap-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-lib-2.1.27-5.el8.i686.rpm cyrus-sasl-lib-2.1.27-5.el8.x86_64.rpm cyrus-sasl-lib-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-lib-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-md5-2.1.27-5.el8.i686.rpm cyrus-sasl-md5-2.1.27-5.el8.x86_64.rpm cyrus-sasl-md5-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-md5-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-ntlm-2.1.27-5.el8.i686.rpm cyrus-sasl-ntlm-2.1.27-5.el8.x86_64.rpm cyrus-sasl-ntlm-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-ntlm-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-plain-2.1.27-5.el8.i686.rpm cyrus-sasl-plain-2.1.27-5.el8.x86_64.rpm cyrus-sasl-plain-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-plain-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-scram-2.1.27-5.el8.i686.rpm cyrus-sasl-scram-2.1.27-5.el8.x86_64.rpm cyrus-sasl-scram-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-scram-debuginfo-2.1.27-5.el8.x86_64.rpm cyrus-sasl-sql-debuginfo-2.1.27-5.el8.i686.rpm cyrus-sasl-sql-debuginfo-2.1.27-5.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2019-19906 https://access.redhat.com/security/updates/classification#moderate https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/8/html/8.3_release_notes/index 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBX6IyudzjgjWX9erEAQiCchAAk9UcA1A60Ye4AUEN/OmG2f6Hy5r+SmzR 0YAj08OcsXQytuhblmMueb3qqPdm6nidIWDm9TLV+R5v599FHRJL+idM8ltQILXu py3GpKJpAkr2Z8dtnPjDw3Mn9/vO9DEjaBecDj+Bnwa6oGA4yb2JPHGdyxxITH9z PaMZVzfFzROptye6EHv3NfZ4Ci4Tlk2wnJtvuvdffyvq+uMvTwDktyshmZNAXfeu O/YHZaGjcnSG7g481s5wlD7aQFgMqN/re9GI5N5Ub6x4Ah13HfrEJ+FgDbu7S5yJ wsnOICbyCP7omRaz9BUE8tHKv4+1tInH1grpys/OwSEhrddJajeaRVjst1Se1Dtt WKzSnFbXJn+pM9BvNrU532rTszyuCbbTPOTfABE6TNiDeLilX8Ehs92zqyJfP9WI 7BFywYyVhZ1itG6wDQ2si8qzrzA4+tSHyGnFDyFJF+tjlBd/NCEwsAsEAzDzGoHl akWbqxzDNtfJHM8Mlv1AB4omVQcxIJU+BN+gGEt6ibNzUqFxK1b6Vc/EUEhOv6fs omHD+rfpJIidV+4K9GWiH8wGuvh+Glgwe0NtyQZYzBVXay/CH7GMeaK+z3JAeVFp 9DKKJARpaxoXy+uzaIREOSApq/0zzZbD+zvqV7aUPsGpNEgY+5ZZjRy0NoX3qkY4 J9dasIlxe08=/h9c -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Nov 03, 2020
Red Hat
203
security advisorysecurity issuesaslMageia: 2019-0206 Moderate Security Risk in Irssi Use After Free
Irssi before 1.0.8 and 1.2.x before 1.2.1, when SASL is enabled, has a use after free when sending SASL login to the server (CVE-2019-13045). References: - https://bugs.mageia.org/show_bug.cgi?id=25025 . MGASA-2019-0206 - Updated irssi package fixes security vulnerability Publication date: 10 Jul 2019 URL: https://advisories.mageia.org/MGASA-2019-0206.html Type: security Affected Mageia releases: 6, 7 CVE: CVE-2019-13045 Irssi before 1.0.8 and 1.2.x before 1.2.1, when SASL is enabled, has a use after free when sending SASL login to the server (CVE-2019-13045). References: - https://bugs.mageia.org/show_bug.cgi?id=25025 - https://irssi.org/security/irssi_sa_2019_06.txt - https://www.cve.org/CVERecord?id=CVE-2019-13045 SRPMS: - 7/core/irssi-1.2.1-1.mga7 - 6/core/irssi-1.0.8-1.mga6 . The recent Irssi patch resolves a critical use after free vulnerability related to SASL, boosting the security framework in Mageia versions 6 and 7.. Irssi Update, Mageia Security, SASL Vulnerability, Linux Security. . LinuxSecurity.com Team
Jul 10, 2019
Mageia
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!