Bugzilla – Bug 1171457
VUL-0: CVE-2020-10957: dovecot,dovecot23: Sending malformed NOOP command causes crash in submission, submission-login orlmtp service.
Last modified: 2020-05-26 13:16:27 UTC
now public through https://dovecot.org/pipermail/dovecot-news/2020-May/000438.html Internal reference: DOV-3784 Vulnerability type: NULL pointer dereference (CWE-476) Vulnerable version: 2.3.0 - 2.3.10 Vulnerable component: submission, lmtp Report confidence: Confirmed Solution status: Fixed by Vendor Fixed version: 2.3.10.1 Researcher credits: Philippe Antoine (Catena Cyber) Vendor notification: 2020-03-24 Solution date: 2020-04-02 Public disclosure: 2020-05-18 CVE reference: CVE-2020-10957 CVSS: 7.5 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) Vulnerability Details: Sending malformed NOOP command causes crash in submission, submission-login or lmtp service. Risk: Remote attacker can keep submission-login service down, causing denial of service attack. For lmtp the risk is neglible, as lmtp is usually behind a trusted MTA. Steps to reproduce: Send ``NOOP EE"FY`` to submission port, or similarly malformed command. Solution: Upgrade to fixed version.
This is an autogenerated message for OBS integration: This bug (1171457) was mentioned in https://build.opensuse.org/request/show/807017 Factory / dovecot23
SUSE-SU-2020:1380-1: An update that fixes three vulnerabilities is now available. Category: security (important) Bug References: 1171456,1171457,1171458 CVE References: CVE-2020-10957,CVE-2020-10958,CVE-2020-10967 Sources used: SUSE Linux Enterprise Module for Server Applications 15-SP1 (src): dovecot23-2.3.10-11.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2020:1379-1: An update that fixes three vulnerabilities is now available. Category: security (important) Bug References: 1171456,1171457,1171458 CVE References: CVE-2020-10957,CVE-2020-10958,CVE-2020-10967 Sources used: SUSE Linux Enterprise Server for SAP 15 (src): dovecot23-2.3.10-4.22.1 SUSE Linux Enterprise Server 15-LTSS (src): dovecot23-2.3.10-4.22.1 SUSE Linux Enterprise High Performance Computing 15-LTSS (src): dovecot23-2.3.10-4.22.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS (src): dovecot23-2.3.10-4.22.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
openSUSE-SU-2020:0720-1: An update that fixes three vulnerabilities is now available. Category: security (important) Bug References: 1171456,1171457,1171458 CVE References: CVE-2020-10957,CVE-2020-10958,CVE-2020-10967 Sources used: openSUSE Leap 15.1 (src): dovecot23-2.3.10-lp151.2.9.1
Done