VDB

GCVE-110-MAGEIA-2018-160

GCVE-110-MAGEIA-2018-160
Advisory Published
Vulnetix · Advisory published March 7, 2018
Dovecot has been updated to version 2.2.34 to fix two security issues. CVE-2017-14461: This vulnerability comes in two flavors. A malicious party can send a specially crafted email to a vulnerable system, causing it to crash dovecot. In some systems, the mail can be stored into the mail system, causing crash every time it is being opened. CVE-2017-15130: If dovecot has been configured with local name or local net configuration blocks, SNI lookups can be used to trash memory with useless config by using random servernames.

Affected Products

VendorProductVersionsPlatforms
Mageiadovecot2.2.34-1.mga6 (unaffected), 0 (affected), 0 (affected), 2.2.34-1.mga6 (unaffected)
Mageiaflash-player-plugin0 (affected), 31.0.0.122-1.mga6.nonfree (unaffected)

Browse GCVE Records

73,685 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›