FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
92b8b284-a3a2-41b1-956c-f9cf8b74f500dovecot -- abort of SASL authentication results in a memory leak

Pedro Sampaio reports:

A flaw was found in dovecot 2.0 up to 2.2.33 and 2.3.0. A abort of SASL authentication results in a memory leak in Dovecot auth client used by login processes. The leak has impact in high performance configuration where same login processes are reused and can cause the process to crash due to memory exhaustion.


Discovery 2018-01-09
Entry 2018-01-26
Modified 2018-02-01
dovecot
gt 2.0 le 2.2.33.2_3

ge 2.3 le 2.3.0

CVE-2017-15132
https://bugzilla.redhat.com/show_bug.cgi?id=1532768
https://github.com/dovecot/core/commit/1a29ed2f96da1be22fa5a4d96c7583aa81b8b060.patch