AVG-94 log

Package dovecot
Status Fixed
Severity Medium
Type denial of service
Affected 0.0-1
Fixed 2.2.27-1
Current 2.3.20-5 [extra]
Ticket None
Created Sun Dec 4 14:28:16 2016
Issue Severity Remote Type Description
CVE-2016-8652 Medium Yes Denial of service
If the auth-policy component has been activated in Dovecot, then a remote user is able to use SASL authentication to crash the auth component. Workaround is...
it appears we were not vulnerable to begin with: http://dovecot.org/list/dovecot-news/2016-December/000333.html The real fixe