oss-sec mailing list archives

Possible CVE request: dovecot crash when disconnecting during pop3 LIST

From: Raphael Geissert <geissert () debian org>
Date: Wed, 14 Aug 2013 17:30:44 +0200

Hi,

Dovecot's 2.2.5 release notes mention a fix for a client-triggered
assert when disconnecting during a pop3 LIST[1]. Without more details,
I can't tell if a CVE id should be assigned. Timo, could you please
shed some more light, or provide a pointer to more details?

Thanks in advance.

[1]http://www.dovecot.org/list/dovecot-news/2013-August/000261.html

Regards,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net

Current thread:

Possible CVE request: dovecot crash when disconnecting during pop3 LIST Raphael Geissert (Aug 14)
- Re: Possible CVE request: dovecot crash when disconnecting during pop3 LIST Timo Sirainen (Aug 14)