公告ID: KYLIN-2019-11500
安全等级: 重要
产品: Kylin V3
发布日期: 2019年8月28日
CVE: CVE-2019-11500
CVSS3评分: 8.1
概述:
None 描述:
In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 (and Pigeonhole before 0.5.7.2), protocol processing can fail for quoted strings. This occurs because '\0' characters are mishandled, and can lead to out-of-bounds writes and remote code execution. 系统版本:
KYLIN 3.0.x
KYLIN 3.2.x
KYLIN 3.3.x
KYLIN 3.4.x
受影响包列表:
dovecot
dovecot
dovecot
dovecot