Security update for dovecot23
This update for dovecot23 fixes the following issues:
- CVE-2020-12673: improper implementation of NTLM does not check message buffer size (bsc#1174922).
- CVE-2020-12674: improper implementation of RPA mechanism (bsc#1174923).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
-
Submitted by
Peter Varkoly (varkoly)
Fixed bugs
bnc#1174922
VUL-0: CVE-2020-12673: dovecot22,dovecot23: improper implementation of NTLM does not check message buffer size
bnc#1174923
VUL-0: CVE-2020-12674: dovecot22,dovecot23: improper implementation of RPA mechanism
