Candidate: CVE-2008-4577
PublicDate: 2008-10-15 20:08:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4577
 https://ubuntu.com/security/notices/USN-838-1
Description:
 The ACL plugin in Dovecot before 1.1.4 treats negative access rights as if
 they are positive access rights, which allows attackers to bypass intended
 access restrictions.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=502967
 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-4577
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_dovecot:
 other: http://hg.dovecot.org/dovecot-1.0/rev/2dc3a5678fe5
upstream_dovecot: released (1.1.4)
dapper_dovecot: not-affected (code not present)
gutsy_dovecot: needed (reached end-of-life)
hardy_dovecot: released (1:1.0.10-1ubuntu5.2)
intrepid_dovecot: not-affected
jaunty_dovecot: not-affected
devel_dovecot: not-affected