Описание
Dovecot 1.1 before 2.2.13 and dovecot-ee before 2.1.7.7 and 2.2.x before 2.2.12.12 does not properly close old connections, which allows remote attackers to cause a denial of service (resource consumption) via an incomplete SSL/TLS handshake for an IMAP/POP3 connection.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1:2.2.9-1ubuntu3 |
| esm-infra-legacy/trusty | not-affected | 1:2.2.9-1ubuntu2.1 |
| lucid | released | 1:1.2.9-1ubuntu6.6 |
| precise | released | 1:2.0.19-0ubuntu2.1 |
| quantal | released | 1:2.1.7-1ubuntu2.1 |
| saucy | released | 1:2.1.7-7ubuntu3.1 |
| trusty | released | 1:2.2.9-1ubuntu2.1 |
| trusty/esm | not-affected | 1:2.2.9-1ubuntu2.1 |
| upstream | released | 1:2.2.13~rc1-1 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
Dovecot 1.1 before 2.2.13 and dovecot-ee before 2.1.7.7 and 2.2.x before 2.2.12.12 does not properly close old connections, which allows remote attackers to cause a denial of service (resource consumption) via an incomplete SSL/TLS handshake for an IMAP/POP3 connection.
Dovecot 1.1 before 2.2.13 and dovecot-ee before 2.1.7.7 and 2.2.x before 2.2.12.12 does not properly close old connections, which allows remote attackers to cause a denial of service (resource consumption) via an incomplete SSL/TLS handshake for an IMAP/POP3 connection.
Dovecot 1.1 before 2.2.13 and dovecot-ee before 2.1.7.7 and 2.2.x befo ...
Dovecot 1.1 before 2.2.13 and dovecot-ee before 2.1.7.7 and 2.2.x before 2.2.12.12 does not properly close old connections, which allows remote attackers to cause a denial of service (resource consumption) via an incomplete SSL/TLS handshake for an IMAP/POP3 connection.
EPSS
5 Medium
CVSS2