VIR Vulnerability Intelligence Relay

CVE-2017-14461

high
Published — · Modified —
💬 Discuss on Community ✚ Propose mitigation
CVSS v3
CVSS v4 NEW
not yet in upstream
VIR risk
8.0

Description

A specially crafted email delivered over SMTP and passed on to Dovecot by MTA can trigger an out of bounds read resulting in potential sensitive information disclosure and denial of service. In order to trigger this vulnerability, an attacker needs to send a specially crafted email message to the server.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

Mitigation details

Source: Debian Security Tracker · View original ↗ · DFSG

CVE-2017-14461 NameCVE-2017-14461 DescriptionA specially crafted email delivered over SMTP and passed on to Dovecot by MTA can trigger an out of bounds read resulting in potential sensitive information disclosure and denial of service. In order to trigger this vulnerability, an attacker needs to send a specially crafted email message to the server. SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec,…

CVE-2017-14461

NameCVE-2017-14461
DescriptionA specially crafted email delivered over SMTP and passed on to Dovecot by MTA can trigger an out of bounds read resulting in potential sensitive information disclosure and denial of service. In order to trigger this vulnerability, an attacker needs to send a specially crafted email message to the server.
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-1333-1, DSA-4130-1
Debian Bugs891819

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
dovecot (PTS)bullseye1:2.3.13+dfsg1-2+deb11u1fixed
bullseye (security)1:2.3.13+dfsg1-2+deb11u4fixed
bookworm1:2.3.19.1+dfsg1-2.1+deb12u5fixed
bookworm (security)1:2.3.19.1+dfsg1-2.1+deb12u6fixed
trixie1:2.4.1+dfsg1-6+deb13u5fixed
trixie (security)1:2.4.1+dfsg1-6+deb13u6fixed
forky, sid1:2.4.4+dfsg1-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
dovecotsourcewheezy1:2.1.7-7+deb7u2DLA-1333-1
dovecotsourcejessie1:2.2.13-12~deb8u4DSA-4130-1
dovecotsourcestretch1:2.2.27-3+deb9u2DSA-4130-1
dovecotsource(unstable)1:2.2.34-1891819

Notes

https://www.dovecot.org/list/dovecot-news/2018-February/000370.html
https://github.com/dovecot/core/commit/30dc856f7b97b75b0e0d69f5003d5d99a13249b4
https://github.com/dovecot/core/commit/8d65e2345e1dbedb00b662ee0abd05be2e7e6b7e
https://github.com/dovecot/core/commit/b72d864b8c34cb21076214c0b28101baec530141
https://github.com/dovecot/core/commit/e9b86842441a668b30796bff7d60828614570a1b
https://github.com/dovecot/core/commit/f5cd17a27f0b666567747f8c921ebe1026970f11
https://github.com/dovecot/core/commit/18a7a161c8dae6f630770a3cbab7374a0c3dd732
https://github.com/dovecot/core/commit/0ed696987e5e5d44e971da2a10f6275b276ece34
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0510

Home - Debian Security - Source (Git)

Apply commands

text fix
Notes
https://www.dovecot.org/list/dovecot-news/2018-February/000370.htmlhttps://github.com/dovecot/core/commit/30dc856f7b97b75b0e0d69f5003d5d99a13249b4https://github.com/dovecot/core/commit/8d65e2345e1dbedb00b662ee0abd05be2e7e6b7ehttps://github.com/dovecot/core/commit/b72d864b8c34cb21076214c0b28101baec530141https://github.com/dovecot/core/commit/e9b86842441a668b30796bff7d60828614570a1bhttps://github.com/dovecot/core/commit/f5cd17a27f0b666567747f8c921ebe1026970f11https://github.com/dovecot/core/commit/18a7a161c8dae6f630770a3cbab7374a0c3dd732https://github.com/dovecot/core/commit/0ed696987e5e5d44e971da2a10f6275b276ece34https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0510

OS impact
suse SUSE Affected 1 release
VersionStatusFixed in
Affected
arch Arch Fixed 1 release
VersionStatusFixed in
Fixed 2.3.0.1-1
debian Debian Fixed 5 releases
VersionStatusFixed in
trixie Fixed 1:2.2.34-1
sid Fixed 1:2.2.34-1
forky Fixed 1:2.2.34-1
bullseye Fixed 1:2.2.34-1
bookworm Fixed 1:2.2.34-1

References

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.