VDB

GCVE-VVD-MAGEIA-2018-160

GCVE-VVD-MAGEIA-2018-160
Advisory Published
Vulnetix · Advisory published October 14, 2018
Dovecot has been updated to version 2.2.34 to fix two security issues. CVE-2017-14461: This vulnerability comes in two flavors. A malicious party can send a specially crafted email to a vulnerable system, causing it to crash dovecot. In some systems, the mail can be stored into the mail system, causing crash every time it is being opened. CVE-2017-15130: If dovecot has been configured with local name or local net configuration blocks, SNI lookups can be used to trash memory with useless config by using random servernames.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiadovecot0 (affected), 2.2.34-1.mga6 (unaffected)
Mageiaflash-player-plugin0 (affected), 31.0.0.122-1.mga6.nonfree (unaffected)

Aliases

CVE-2017-14461CVE-2017-15130

Transitive aliases

VVD-MAGEIA-2018-114BDU:2021-03235ALSA-2024:6529VVD-ANCHORE-2024-23185BDU:2021-01901SUSE-SU-2021:0027-1RHSA-2021:1887GHSA-g9m4-c8qf-67qwCVE-2020-25275CVE-2019-19722CVE-2019-7524CVE-2020-28200CVE-2020-7957CVE-2024-23185BDU:2020-00781BDU:2019-03704GHSA-2727-qgh5-485gCVE-2020-24386VVD-MAGEIA-2019-72WID-SEC-W-2025-0234ALSA-2021:1887VVD-MAGEIA-2021-557GHSA-xxqf-cf9x-9rwqALSA-2024:6973SUSE-SU-2024:3118-1CVE-2020-7046GHSA-q55g-848v-f654GHSA-25jr-qm4x-mvhxBDU:2023-07818GHSA-vg8f-j3m8-7g9vGSD-2024-23185CVE-2019-10691BDU:2020-00780CVE-2024-23184BDU:2019-03702GHSA-v7jr-wfqh-v962BDU:2020-05789GHSA-f6jc-wwhw-gpq7RHSA-2024:6529BDU:2021-03234RHSA-2024:6973GSD-2020-25275CNVD-2018-05070GHSA-36px-qc55-gxh7CVE-2020-12674ALSA-2020:4763GHSA-h779-883h-mr35BDU:2024-06559CVE-2021-33515BDU:2019-01416GHSA-v4pj-8r82-6phxGHSA-qm25-rqq9-7jcrOPENSUSE-SU-2021:0072-1RHSA-2024:6465VVD-ANCHORE-2024-23184OXDC-ADV-2024-0003OPENSUSE-SU-2025:14715-1GHSA-r34f-p748-2x25CNVD-2018-06399CVE-2020-10957VVD-MAGEIA-2019-261VVD-MAGEIA-2020-222SUSE-SU-2021:0029-1CVE-2019-11500BDU:2019-01562SUSE-SU-2021:0028-1GHSA-pq8h-22gg-vpmwVVD-MAGEIA-2020-330BDU:2020-05783GHSA-jp3r-27f3-r855VVD-MAGEIA-2021-8CVE-2019-11499GHSA-7m29-wr8r-5c2mGHSA-gcm9-2h5w-j7x9VVD-MAGEIA-2019-141BDU:2020-05782GHSA-89g9-v7q6-px25BDU:2021-03236OPENSUSE-SU-2024:14274-1CVE-2019-11494GHSA-f5gc-665w-jv83VVD-MAGEIA-2024-280CNVD-2021-01531CVE-2020-12673BDU:2020-00779CVE-2020-10958CVE-2020-10967GHSA-mqm8-r3v6-8mmvGHSA-64hp-rrrv-2xwxGHSA-5f48-j349-fj3mCVE-2019-3814BDU:2019-03214GHSA-cpfv-hj4g-93jrGHSA-pwmq-cvcm-r5p2GSD-2024-23184BDU:2024-08624GHSA-jv8c-8hrc-9f7mBDU:2019-02459OPENSUSE-SU-2021:0026-1ALSA-2022:1950WID-SEC-W-2024-1867OXDC-ADV-2024-0002CVE-2017-15132CVE-2020-12100CVE-2021-29157

References

Updated dovecot packages fix security vulnerabilities
advisory
Updated dovecot packages fix security vulnerabilities
issue
Updated dovecot packages fix security vulnerabilities
issue
Updated dovecot packages fix security vulnerabilities
issue
flash-player-plugin maintenance release
advisory
flash-player-plugin maintenance release
issue
flash-player-plugin maintenance release
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›