Описание
Security update for dovecot23
This update for dovecot23 fixes the following issues:
- CVE-2024-23185: Fixed a denial of service with large headers (bsc#1229183)
- CVE-2024-23184: Fixed a denial of service parsing messages containing many address headers (bsc#1229184)
Список пакетов
SUSE Enterprise Storage 7.1
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise Module for Server Applications 15 SP5
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise Module for Server Applications 15 SP6
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise Server 15 SP2-LTSS
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise Server 15 SP3-LTSS
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise Server 15 SP4-LTSS
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Manager Proxy 4.3
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
SUSE Manager Server 4.3
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
openSUSE Leap 15.5
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
openSUSE Leap 15.6
dovecot23-2.3.15-150200.65.1
dovecot23-backend-mysql-2.3.15-150200.65.1
dovecot23-backend-pgsql-2.3.15-150200.65.1
dovecot23-backend-sqlite-2.3.15-150200.65.1
dovecot23-devel-2.3.15-150200.65.1
dovecot23-fts-2.3.15-150200.65.1
dovecot23-fts-lucene-2.3.15-150200.65.1
dovecot23-fts-solr-2.3.15-150200.65.1
dovecot23-fts-squat-2.3.15-150200.65.1
Ссылки
- Link for SUSE-SU-2024:3118-1
- E-Mail link for SUSE-SU-2024:3118-1
- SUSE Security Ratings
- SUSE Bug 1229183
- SUSE Bug 1229184
- SUSE CVE CVE-2024-23184 page
- SUSE CVE CVE-2024-23185 page
Описание
Having a large number of address headers (From, To, Cc, Bcc, etc.) becomes excessively CPU intensive. With 100k header lines CPU usage is already 12 seconds, and in a production environment we observed 500k header lines taking 18 minutes to parse. Since this can be triggered by external actors sending emails to a victim, this is a security issue. An external attacker can send specially crafted messages that consume target system resources and cause outage. One can implement restrictions on address headers on MTA component preceding Dovecot. No publicly available exploits are known.
Затронутые продукты
SUSE Enterprise Storage 7.1:dovecot23-2.3.15-150200.65.1
SUSE Enterprise Storage 7.1:dovecot23-backend-mysql-2.3.15-150200.65.1
SUSE Enterprise Storage 7.1:dovecot23-backend-pgsql-2.3.15-150200.65.1
SUSE Enterprise Storage 7.1:dovecot23-backend-sqlite-2.3.15-150200.65.1
Ссылки
- CVE-2024-23184
- SUSE Bug 1229184
Описание
Very large headers can cause resource exhaustion when parsing message. The message-parser normally reads reasonably sized chunks of the message. However, when it feeds them to message-header-parser, it starts building up "full_value" buffer out of the smaller chunks. The full_value buffer has no size limit, so large headers can cause large memory usage. It doesn't matter whether it's a single long header line, or a single header split into multiple lines. This bug exists in all Dovecot versions. Incoming mails typically have some size limits set by MTA, so even largest possible header size may still fit into Dovecot's vsz_limit. So attackers probably can't DoS a victim user this way. A user could APPEND larger mails though, allowing them to DoS themselves (although maybe cause some memory issues for the backend in general). One can implement restrictions on headers on MTA component preceding Dovecot. No publicly available exploits are known.
Затронутые продукты
SUSE Enterprise Storage 7.1:dovecot23-2.3.15-150200.65.1
SUSE Enterprise Storage 7.1:dovecot23-backend-mysql-2.3.15-150200.65.1
SUSE Enterprise Storage 7.1:dovecot23-backend-pgsql-2.3.15-150200.65.1
SUSE Enterprise Storage 7.1:dovecot23-backend-sqlite-2.3.15-150200.65.1
Ссылки
- CVE-2024-23185
- SUSE Bug 1229183