VDB
GCVE-110-MAGEIA-2018-160
GCVE-110-MAGEIA-2018-160
Advisory Published
Dovecot has been updated to version 2.2.34 to fix two security issues.
CVE-2017-14461:
This vulnerability comes in two flavors. A malicious party can send a
specially crafted email to a vulnerable system, causing it to crash
dovecot. In some systems, the mail can be stored into the mail system,
causing crash every time it is being opened.
CVE-2017-15130:
If dovecot has been configured with local name or local net
configuration blocks, SNI lookups can be used to trash memory with
useless config by using random servernames.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | dovecot | 2.2.34-1.mga6 (unaffected), 0 (affected), 0 (affected), 2.2.34-1.mga6 (unaffected) | — |
| Mageia | flash-player-plugin | 0 (affected), 31.0.0.122-1.mga6.nonfree (unaffected) | — |
Aliases
References
Browse GCVE Records
73,685 records in the GCVE database · Updated July 18, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.