Synopsis: Important: dovecot security update
Advisory ID:       SLSA-2019:2885-1
Issue Date:        2019-09-23
CVE Numbers:       CVE-2019-11500
--

* dovecot: improper NULL byte handling in IMAP and ManageSieve protocol
parsers leads to out of bounds writes (CVE-2019-11500)
--

SL6
  x86_64
    dovecot-2.0.9-22.el6_10.1.i686.rpm
    dovecot-2.0.9-22.el6_10.1.x86_64.rpm
    dovecot-debuginfo-2.0.9-22.el6_10.1.i686.rpm
    dovecot-debuginfo-2.0.9-22.el6_10.1.x86_64.rpm
    dovecot-mysql-2.0.9-22.el6_10.1.x86_64.rpm
    dovecot-pgsql-2.0.9-22.el6_10.1.x86_64.rpm
    dovecot-pigeonhole-2.0.9-22.el6_10.1.x86_64.rpm
    dovecot-devel-2.0.9-22.el6_10.1.x86_64.rpm
  i386
    dovecot-2.0.9-22.el6_10.1.i686.rpm
    dovecot-debuginfo-2.0.9-22.el6_10.1.i686.rpm
    dovecot-mysql-2.0.9-22.el6_10.1.i686.rpm
    dovecot-pgsql-2.0.9-22.el6_10.1.i686.rpm
    dovecot-pigeonhole-2.0.9-22.el6_10.1.i686.rpm
    dovecot-devel-2.0.9-22.el6_10.1.i686.rpm

- Scientific Linux Development Team