ALSA-2022:1950

[ALSA-2022:1950] Moderate: dovecot security update

Type:

security

Severity:

moderate

Release date:

2022-05-10

Description:

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. 

The following packages have been upgraded to a later upstream version: dovecot (2.3.16). (BZ#1980014)

Security Fix(es):

* dovecot: plaintext commands injection (CVE-2021-33515)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	dovecot-mysql-2.3.16-2.el8.aarch64.rpm	1bf40e13e29cc0f23feddd00f3b9839d9710bf51e7503241dc3068731c9c316e
aarch64	dovecot-2.3.16-2.el8.aarch64.rpm	20363bfd90388db23ba9c77bb46595497b85d36ee7a91cb4630c55055e0ed8fb
aarch64	dovecot-pgsql-2.3.16-2.el8.aarch64.rpm	5482c458007e428d76b516f8c75349f826cf0fd77ccafd952017cf8f2af00973
aarch64	dovecot-devel-2.3.16-2.el8.aarch64.rpm	d0fbad16acbbd74f45ce944a8cd2ccbdf6570a047f1a936bd41d1b42720ea0cf
aarch64	dovecot-pigeonhole-2.3.16-2.el8.aarch64.rpm	ee959138c3a9cafef7b4fc954e9ed36e26e158d42699b93a1b6256e8d72af66e
i686	dovecot-2.3.16-2.el8.i686.rpm	f0d1c17951cc180d3e2f8bbb82af2e4b0ca6f8a1b35b1981cea3b1e2d993bf62
ppc64le	dovecot-mysql-2.3.16-2.el8.ppc64le.rpm	0a1b972f233e2894ae3032b5cd540b8df1d35f02dd33dc213a0e469140b732c0
ppc64le	dovecot-pigeonhole-2.3.16-2.el8.ppc64le.rpm	2d0783f468317f784b58f96d96d1c2f126bce5bf291d17d204d121d06c676c3d
ppc64le	dovecot-devel-2.3.16-2.el8.ppc64le.rpm	3a48ffc173022f02b8e676ddbfb9ee988bae376e10051388a308661a5d57ac91
ppc64le	dovecot-2.3.16-2.el8.ppc64le.rpm	3ef81df2d25675fa530920a33ac11e9b56ee3ea291f259206198f4a951e97fc9
ppc64le	dovecot-pgsql-2.3.16-2.el8.ppc64le.rpm	d734095e7378aee17e60f1a2e6036b5e1c925f64d5a9e1afcd205f50a785f309
x86_64	dovecot-mysql-2.3.16-2.el8.x86_64.rpm	3128d83fe3a9aa5e997158d329930fab3e55ceea101202945e33f7485cf55a47
x86_64	dovecot-pgsql-2.3.16-2.el8.x86_64.rpm	365e2f715e43ffa4733bfab5bf8f0253914e78e19ce849eed289218f10d469d9
x86_64	dovecot-2.3.16-2.el8.x86_64.rpm	482cd212a4a3c34dcafa5047e4da192d4e385cf9ebc3f5e7547bfebb2ae36772
x86_64	dovecot-devel-2.3.16-2.el8.x86_64.rpm	a0844d80a7156ae5f9e4623ad0f2fb00d267475311c0f096e9cba7ecd47ad594
x86_64	dovecot-pigeonhole-2.3.16-2.el8.x86_64.rpm	f5d57e9a916c603a2e853e3f21e41582b53f8a87255cb4d1c6a9eb54ac4f7c8c

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.