Synopsis:          Moderate: dovecot security and bug fix update

Advisory ID:       SLSA-2020:1062-1

Issue Date:        2020-04-07

CVE Numbers:       CVE-2019-7524

                   CVE-2019-3814

--



* dovecot: Improper certificate validation

    

* dovecot: Buffer overflow in indexer-worker process results in privilege

    escalation

--



SL7

  x86_64

    dovecot-pgsql-2.2.36-6.el7.x86_64.rpm

    dovecot-pigeonhole-2.2.36-6.el7.x86_64.rpm

    dovecot-mysql-2.2.36-6.el7.x86_64.rpm

    dovecot-2.2.36-6.el7.x86_64.rpm

    dovecot-2.2.36-6.el7.i686.rpm

    dovecot-debuginfo-2.2.36-6.el7.i686.rpm

    dovecot-debuginfo-2.2.36-6.el7.x86_64.rpm

    dovecot-devel-2.2.36-6.el7.x86_64.rpm



- Scientific Linux Development Team