Package "dovecot-lmtpd"

Name: dovecot-lmtpd


secure POP3/IMAP server - LMTP server

Latest version: 1:2.3.16+dfsg1-3ubuntu2.1
Release: jammy (22.04)
Level: security
Repository: universe
Head package: dovecot
Homepage: https://dovecot.org/


Download "dovecot-lmtpd"

Other versions of "dovecot-lmtpd" in Jammy

Repository Area Version
base universe 1:2.3.16+dfsg1-3ubuntu2
updates universe 1:2.3.16+dfsg1-3ubuntu2.2
proposed universe 1:2.3.16+dfsg1-3ubuntu2.3


Version: 1:2.3.16+dfsg1-3ubuntu2.1 2022-07-11 15:06:48 UTC

  dovecot (1:2.3.16+dfsg1-3ubuntu2.1) jammy-security; urgency=medium

  * SECURITY UPDATE: privilege escalation via multiple passdbs
    - debian/patches/CVE-2022-30550.patch: fix handling passdbs with
      identical driver/args but different mechanisms/username_filter in
      src/auth/auth-request.c, src/auth/auth.c, src/auth/auth.h,
      src/auth/passdb.c, src/auth/passdb.h.
    - CVE-2022-30550

 -- Marc Deslauriers <email address hidden> Thu, 07 Jul 2022 13:13:40 -0400

CVE-2022-30550 Privilege escalation possible in dovecot when imilar master and non-master passdbs are used

About   -   Send Feedback to @ubuntu_updates