oss-sec mailing list archives
Re: CVE request: Dovecot remote DoS on TLS connections
From: Sven Kieske <s.kieske () mittwald de>
Date: Thu, 7 May 2015 10:15:49 +0200
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 26/04/15 20:31, Hanno Böck wrote:
The current Dovecot (2.2.16) imap/pop3 server has an issue that handshake failures will lead to a crash of the login process.
Do you happen to know in which version this vulnerability got introduced? - -- Mit freundlichen Grüßen / Regards Sven Kieske Systemadministrator Mittwald CM Service GmbH & Co. KG Königsberger Straße 6 32339 Espelkamp T: +49-5772-293-100 F: +49-5772-293-333 https://www.mittwald.de Geschäftsführer: Robert Meyer St.Nr.: 331/5721/1033, USt-IdNr.: DE814773217, HRA 6640, AG Bad Oeynhaus en Komplementärin: Robert Meyer Verwaltungs GmbH, HRB 13260, AG Bad Oeynhausen -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iQIcBAEBAgAGBQJVSx81AAoJEMby9TMDAbQRBLAP/jhwqHR9VBZ0skgmYDEULwl5 aov5Y8ZZo+cDpWlC9cbn9lSav+cJFRfnCppX92W57d7hR/A7JhqFHvm69SFq3gBt HWlBZ2olY9BFvYBDaPt+cde1P2CCiNr7ehNwa6/Pj0LIsfb8cBjLZKRw2pcxDx6Q cAHbltVEMCbn0zCbSI9LJCpnCOVIiURLGW7o2PSyBELSi6uij08kmpiqpB+W99nw SpRNAbLcWCmq4O+53b2SLocxx/2K6N2EmZA8F7SfxNWZmx0q5uhcXdQr/Q70KZwg JVPbx5YjcqvvEJME0N3rrFUMnb4c7nUzeA1Ak5Esyf0h+WnXdAFArcgs9Fckn+qF FQ0NafhiEsUQuUo4CvYaJt28PtQJkhBv3dUxM/6HodrVx7bRCGnkOVpyEBoHSQsU jzVS1jRnTCuQiPAZmAnJZ2y1de3Oa59NVcCYEjcf0cfrQsvn719lPR1Hs+uxwpi9 2siXIq4KLZEVMM1UNtNFoZ/ncb4K/k7QdiQwvdJOrjRgWOv6/KmPuBfg0H8aekj9 ThwdxNScLUDGhp0cepZ/BVm9WOkIrDwx6FJf7FQy0DcukplqverOG1+o/J89Soou I17KsSADZ1l/YpVKMYOHsUjpS3PUey4hEfrGwEpDv9qZ+agSPn10EPL4boVKnycE aejxFxnblpr6gI6jKSr1 =bi65 -----END PGP SIGNATURE-----
Current thread:
- CVE request: Dovecot remote DoS on TLS connections Hanno Böck (Apr 26)
- Re: CVE request: Dovecot remote DoS on TLS connections cve-assign (Apr 26)
- Re: Re: CVE request: Dovecot remote DoS on TLS connections Hanno Böck (Apr 28)
- Re: CVE request: Dovecot remote DoS on TLS connections Sven Kieske (May 07)
- Re: CVE request: Dovecot remote DoS on TLS connections Hanno Böck (May 07)
- Re: CVE request: Dovecot remote DoS on TLS connections cve-assign (Apr 26)