Home

CVE-2017-2669

Description

Dovecot before version 2.2.29 is vulnerable to a denial of service. When dict passdb and userdb were used for user authentication, the username sent by the IMAP/POP3 client was sent through var_expand() to perform %variable expansion. Sending specially crafted %variable fields could result in excessive memory usage causing the process to crash (and restart), or excessive CPU usage causing all authentications to hang.

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
6.874

Associated Vulnerability

VulnerabilityOS Platform
IMAP and POP3 email server (USN-3258-2) dovecot-core_2.2.24-1ubuntu1.3_i386.debLinux
IMAP and POP3 email server (USN-3258-2) dovecot-core_2.2.24-1ubuntu1.3_amd64.debLinux
SUSE-SU-2017:1250-1(SUSE Linux Enterprise Server 12-SP1 ) dovecot-2.2-3.1.noarch.rpmLinux
SUSE-SU-2017:1250-1(SUSE Linux Enterprise Server 12-SP1 ) dovecot22-2.2.29.1-11.1.x86_64.rpmLinux
SUSE-SU-2017:1250-1(SUSE Linux Enterprise Server 12-SP1 ) dovecot22-backend-mysql-2.2.29.1-11.1.x86_64.rpmLinux
SUSE-SU-2017:1250-1(SUSE Linux Enterprise Server 12-SP1 ) dovecot22-backend-mysql-debuginfo-2.2.29.1-11.1.x86_64.rpmLinux
SUSE-SU-2017:1250-1(SUSE Linux Enterprise Server 12-SP1 ) dovecot22-backend-pgsql-2.2.29.1-11.1.x86_64.rpmLinux
SUSE-SU-2017:1250-1(SUSE Linux Enterprise Server 12-SP1 ) dovecot22-backend-pgsql-debuginfo-2.2.29.1-11.1.x86_64.rpmLinux
SUSE-SU-2017:1250-1(SUSE Linux Enterprise Server 12-SP1 ) dovecot22-backend-sqlite-2.2.29.1-11.1.x86_64.rpmLinux
SUSE-SU-2017:1250-1(SUSE Linux Enterprise Server 12-SP1 ) dovecot22-backend-sqlite-debuginfo-2.2.29.1-11.1.x86_64.rpmLinux
SUSE-SU-2017:1250-1(SUSE Linux Enterprise Server 12-SP1 ) dovecot22-debuginfo-2.2.29.1-11.1.x86_64.rpmLinux
SUSE-SU-2017:1250-1(SUSE Linux Enterprise Server 12-SP1 ) dovecot22-debugsource-2.2.29.1-11.1.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234