Title: Dovecot: Multiple vulnerabilities ([glsa=202107-41]GLSA 202107-41[/glsa])
Severity: low
Exploitable: remote
Date: 2021-07-18
Bug(s): #797349
ID: 202107-41
Synopsis
Multiple vulnerabilities have been found in Dovecot, the worst of
which could result in a Denial of Service condition.
Background
Dovecot is an open source IMAP and POP3 email server.
Affected Packages
Package: net-mail/dovecot
Vulnerable: < 2.3.14.1
Unaffected: >= 2.3.14.1
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in Dovecot. Please review
the CVE identifiers referenced below for details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
All Dovecot users should upgrade to the latest version:
Code: Select all
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-mail/dovecot-2.3.14.1"
References
CVE-2021-29157
CVE-2021-33515