Release Info

Advisory: CLSA-2022:1653506138

OS: CentOS 8.4 ELS

Public date: 2022-05-25 00:00:00

Project: dovecot

Version: 2.3.8-9.el8.tuxcare.els1

Errata link: https://errata.cloudlinux.com/centos8.4-els/CLSA-2022-1653506138.html

Changelog

- CVE-2021-33515: fix possible command injection by stopping reading commands when input was locked by the STARTTLS command

Update

Update command: dnf update dovecot*

Packages list

dovecot-mysql-2.3.8-9.el8.tuxcare.els1.x86_64.rpm dovecot-devel-2.3.8-9.el8.tuxcare.els1.i686.rpm dovecot-devel-2.3.8-9.el8.tuxcare.els1.x86_64.rpm dovecot-pigeonhole-2.3.8-9.el8.tuxcare.els1.x86_64.rpm dovecot-pgsql-2.3.8-9.el8.tuxcare.els1.x86_64.rpm dovecot-2.3.8-9.el8.tuxcare.els1.x86_64.rpm dovecot-2.3.8-9.el8.tuxcare.els1.i686.rpm

CVEs

CVE-2021-33515