FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

dovecot -- multiple vulnerabilities

Affected packages
2.3.11 <= dovecot < 2.3.14.1

Details

VuXML ID d18f431d-d360-11eb-a32c-00a0989e4ec1
Discovery 2021-03-22
Entry 2021-06-22

Dovecot team reports:

CVE-2021-29157: Dovecot does not correctly escape kid and azp fields in JWT tokens. This may be used to supply attacker controlled keys to validate tokens in some configurations. This requires attacker to be able to write files to local disk.

[source]

CVE-2021-33515: On-path attacker could inject plaintext commands before STARTTLS negotiation that would be executed after STARTTLS finished with the client. Only the SMTP submission service is affected.

[source]

References

CVE Name CVE-2021-29157
CVE Name CVE-2021-33515
URL https://dovecot.org/pipermail/dovecot-news/2021-June/000461.html
URL https://dovecot.org/pipermail/dovecot-news/2021-June/000462.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.