VDB

GCVE-110-MAGEIA-2020-222

GCVE-110-MAGEIA-2020-222
Advisory Published
Vulnetix · Advisory published May 24, 2020
Dovecot has been updated to fix several security issues. Sending malformed NOOP command causes crash in submission, submission-login or lmtp service (CVE-2020-10957). Sending command followed by sufficient number of newlines triggers a use-after-free bug that might crash submission-login, submission or lmtp service (CVE-2020-10958). Sending mail with empty quoted localpart causes submission or lmtp component to crash (CVE-2020-10967).

Affected Products

VendorProductVersionsPlatforms
Mageiadovecot2.3.10.1-1.mga7 (unaffected), 0 (affected), 0 (affected), 2.3.10.1-1.mga7 (unaffected)
Mageiakodi18.9-1.mga7 (unaffected), 0 (affected)

Browse GCVE Records

72,096 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›