pigeonhole

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Sieve implementation for Dovecot
Version 0.5.7.2-1 [community]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1027 0.5.7.1-1 0.5.7.2-1 Critical Fixed
Issue Group Severity Remote Type Description
CVE-2019-11500 AVG-1027 Critical Yes Arbitrary code execution
IMAP and ManageSieve protocol parsers in Dovecot before 2.3.7.2 and Pigeonhole before 0.5.7.2 do not properly handle NUL byte when scanning data in quoted...

Advisories

Date Advisory Group Severity Description
28 Aug 2019 ASA-201908-19 AVG-1027 Critical arbitrary code execution