| Name: | dovecot |
|---|---|
| Epoch: | 1 |
| Version: | 2.3.21 |
| Release: | 16.el10_1.1 |
| Architecture: | aarch64 |
| Group: | Unspecified |
| Size: | 21973145 |
| License: | MIT AND LGPL-2.1-only |
| RPM: | dovecot-2.3.21-16.el10_1.1.aarch64.rpm |
| Source RPM: | dovecot-2.3.21-16.el10_1.1.src.rpm |
| Build Date: | Tue May 05 2026 |
| Build Host: | build-ol10-aarch64.oracle.com |
| Vendor: | Oracle America |
| URL: | https://www.dovecot.org/ |
| Summary: | Secure imap and pop3 server |
| Description: | Dovecot is an IMAP server for Linux/UNIX-like systems, written with security primarily in mind. It also contains a small POP3 server. It supports mail in either of maildir or mbox formats. The SQL drivers and authentication plug-ins are in their subpackages. |
- fix CVE-2026-27858: denial of service via crafted message before authentication (RHEL-161625) - fix CVE-2025-59032: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command (RHEL-162273) - fix CVE-2026-27857: denial of service via specially crafted NOOP command (RHEL-161664)
- fix sysusers config file name (RHEL-77323)
- Bump release for October 2024 mass rebuild: Resolves: RHEL-64018
- fix CVE-2024-23185: very large headers can cause resource exhaustion when parsing message (RHEL-55218) - fix CVE-2024-23184: using a large number of address headers may trigger a denial of service (RHEL-55205)
- fix crash when user has sieve script that includes two missing scripts (RHEL-52541)
- fix building with noengine openssl
- Bump release for June 2024 mass rebuild
- set min uid to 1000
- do not run during systemd commands during leap upgrade
- drop dependency on libstemmer (#RHEL-40657)