Release date:
2026-05-12 19:39:20 UTC
Description:
- CVE-2026-27858: managesieve: fix DoS via crafted message before
authentication that caused excessive memory allocation
- CVE-2025-59032: managesieve: fix crash when AUTHENTICATE command does not
finish on the first call (literal SASL initial response)
Updated packages:
-
dovecot-2.3.16-15.el9.tuxcare.els2.i686.rpm
sha:f5ff69dc0c705133af19270eb4f10a54a6aefc4dc4842fdb3ed2a272eb5ad600
-
dovecot-2.3.16-15.el9.tuxcare.els2.x86_64.rpm
sha:43d1c18f192856ff4d0df4154de1a3ff5a8da4f9d8b8dbaa3a4647d0a24b8591
-
dovecot-devel-2.3.16-15.el9.tuxcare.els2.i686.rpm
sha:b10027fd365e5fad7573de7d3d9f0701a34bdb0d5dcc16c4e0bed2d0af0416c0
-
dovecot-devel-2.3.16-15.el9.tuxcare.els2.x86_64.rpm
sha:512639e9426210af5fe4fcc9949a5c09fa05ab387949d6a658570e79ca6f4ddb
-
dovecot-mysql-2.3.16-15.el9.tuxcare.els2.x86_64.rpm
sha:4ebf99a09df5a62014fe4cbb1a227b269e4e22fcdfc697a89fcdfeb2b8663192
-
dovecot-pgsql-2.3.16-15.el9.tuxcare.els2.x86_64.rpm
sha:2c047a7c114a2e6ef817defae78cfd255cb787d0986f5a8c5cccd7e7a20d1343
-
dovecot-pigeonhole-2.3.16-15.el9.tuxcare.els2.x86_64.rpm
sha:30c974b55c7da4b2f6167f8da359021c6f8ec09d4791cc502950429344c0c40f
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
