Описание
In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service (resource consumption) via a crafted e-mail message with deeply nested MIME parts.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1:2.2.33.2-1ubuntu4.6 |
| devel | released | 1:2.3.11.3+dfsg1-1 |
| esm-infra-legacy/trusty | not-affected | 1:2.2.9-1ubuntu2.6+esm3 |
| esm-infra/bionic | not-affected | 1:2.2.33.2-1ubuntu4.6 |
| esm-infra/focal | not-affected | 1:2.3.7.2-1ubuntu3.2 |
| esm-infra/xenial | not-affected | 1:2.2.22-1ubuntu2.13 |
| focal | released | 1:2.3.7.2-1ubuntu3.2 |
| precise/esm | ignored | |
| trusty | ignored | end of standard support |
| trusty/esm | released | 1:2.2.9-1ubuntu2.6+esm3 |
Показывать по
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service (resource consumption) via a crafted e-mail message with deeply nested MIME parts.
In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service (resource consumption) via a crafted e-mail message with deeply nested MIME parts.
In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp ...
In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service (resource consumption) via a crafted e-mail message with deeply nested MIME parts.
Уязвимость почтового сервера Dovecot, вызванная неконтролируемой рекурсией, позволяющая нарушителю вызвать отказ в обслуживании
5 Medium
CVSS2
7.5 High
CVSS3