CVE-2017-2669

Priority
Medium
Description
Unauthenticated remote attackers could perform a denial of service (process
crash and/or excessive cpu utilization) with a crafted username
References
Notes
 tyhicks> Vulnerable versions: 2.2.26 - 2.2.28
Assigned-to
mdeslaur
Package
Upstream:needed
Ubuntu 12.04 LTS (Precise Pangolin):not-affected
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (1:2.2.9-1ubuntu2.1)
Ubuntu Touch 15.04:DNE
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Ubuntu 16.10 (Yakkety Yak):not-affected (1:2.2.24-1ubuntu1.3)
Ubuntu 17.04 (Zesty Zapus):released (2.2.27-2ubuntu2)
Patches:
Upstream:https://github.com/dovecot/core/commit/000030feb7a30f193197f1aab8a7b04a26b42735
More Information

Updated: 2017-04-11 21:14:31 UTC (commit 12375)