Release date:
2026-05-08 21:08:31 UTC
Description:
- CVE-2026-27858: bound managesieve-login AUTHENTICATE initial response size
to prevent memory exhaustion DoS before authentication
- CVE-2025-59032: fix managesieve-login crash when AUTHENTICATE command
did not finish on the first call due to literal SASL initial response
Updated packages:
-
dovecot-2.3.16-8.el9.tuxcare.els4.i686.rpm
sha:737fa65eb10adaaa64f0d794df26778e6e569c5541091a5d1e475ecb0d13db39
-
dovecot-2.3.16-8.el9.tuxcare.els4.x86_64.rpm
sha:4efdab7c17b8477c8b363e0b39be63a0a3e971d4d87a6ced2836070b12e19a3d
-
dovecot-devel-2.3.16-8.el9.tuxcare.els4.i686.rpm
sha:0874d0d72bc3f4638efb953b5488f140d77ec22d1760335064bda4f29c1f45f6
-
dovecot-devel-2.3.16-8.el9.tuxcare.els4.x86_64.rpm
sha:74cbf6e9e128a7eb5cbead71d52f0e8a12c61206addb0ae4699e0653b066107b
-
dovecot-mysql-2.3.16-8.el9.tuxcare.els4.x86_64.rpm
sha:c4befe1ea00128a84dc24790278c5f08c4be88493207b09dd1f3bbff361eb880
-
dovecot-pgsql-2.3.16-8.el9.tuxcare.els4.x86_64.rpm
sha:4517d4fc5cbe8dca4419d37c2262a2a7862abb3743a13bcaab1e824c0b93d92d
-
dovecot-pigeonhole-2.3.16-8.el9.tuxcare.els4.x86_64.rpm
sha:846619f5a831d82eb87d0c3ef9810ae60815c48b90dda15596412a6b734066df
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
