Displaying 3 results from an estimated 3 matches for "x1020".
Did you mean:
x100
2019 Aug 28
7
CVE-2019-11500: Critical vulnerability in Dovecot and Pigeonhole
...ot
directly evident from logs.
Steps to reproduce:
This bug is best observed using valgrind to see the out of bounds read
with following snippet:
perl -e 'print "a id (\"foo\" \"".("x"x1021)."\\A\" \"bar\"
\"\000".("x"x1020)."\\A\")\n"' | nc localhost 143
Solution:
Operators should update to the latest Patch Release. There is no
workaround for the issue.
---
Aki Tuomi
Open-Xchange oy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: app...
2019 Aug 28
0
CVE-2019-11500:
...ot
directly evident from logs.
Steps to reproduce:
This bug is best observed using valgrind to see the out of bounds read
with following snippet:
perl -e 'print "a id (\"foo\" \"".("x"x1021)."\\A\" \"bar\"
\"\000".("x"x1020)."\\A\")\n"' | nc localhost 143
Solution:
Operators should update to the latest Patch Release. There is no
workaround for the issue.
---
Aki Tuomi
Open-Xchange oy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: app...
2019 Sep 03
0
CVE-2019-11500: Critical vulnerability in Dovecot and Pigeonhole
...; Steps to reproduce:
>
> This bug is best observed using valgrind to see the out of bounds read
> with following snippet:
>
> perl -e 'print "a id (\"foo\" \"".("x"x1021)."\\A\" \"bar\"
> \"\000".("x"x1020)."\\A\")\n"' | nc localhost 143
>
>
Hi!
Before I had 2.2.25 and returned result was:
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE
IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
a BAD Missing ')'
now I upgraded to 2.2.36.4 and the r...