Diffusion FreeBSD ports repository rP510075

dovecot-pigeonhole: fix CVE-2019-11500
rP510075
Actions

Description

mail/dovecot,mail/dovecot-pigeonhole: fix CVE-2019-11500

Changes

CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte when scanning data in quoted strings, leading to out of bounds heap memory writes. Found by Nick Roessler and Rafi Rubin.

MFH: 2019Q3
Security: CVE-2019-11500

Details

Provenance

ler	Authored on

Parents

rP510074: security/vuxml: document dovecot,dovecot-pigeonhole vulns

Branches

Unknown

Tags

Unknown

Event Timeline

ler committed rP510075: mail/dovecot,mail/dovecot-pigeonhole: fix CVE-2019-11500.Aug 28 2019, 3:59 PM

Changes (4)

Path

Size

head/

mail/

dovecot-pigeonhole/

dovecot/

rP510075

View Options

head/mail/dovecot-pigeonhole/Makefile

View Options

head/mail/dovecot-pigeonhole/distinfo

View Options

head/mail/dovecot/Makefile

View Options

head/mail/dovecot/distinfo

mail/dovecot,mail/dovecot-pigeonhole: fix CVE-2019-11500rP510075Actions

Description

Changes

Details

Event Timeline

Changes (4)

rP510075

head/mail/dovecot-pigeonhole/Makefile

head/mail/dovecot-pigeonhole/distinfo

head/mail/dovecot/Makefile

head/mail/dovecot/distinfo

mail/dovecot,mail/dovecot-pigeonhole: fix CVE-2019-11500
rP510075
Actions