projects / dovecot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 55c4342) | patch
[PATCH 01/24] auth: Don't disconnect auth client when invalid base64 SASL input is...
authorTimo Sirainen <timo.sirainen@open-xchange.com>
Tue, 4 Nov 2025 09:34:30 +0000 (11:34 +0200)
committerNoah Meyerhans <noahm@debian.org>
Tue, 31 Mar 2026 19:07:17 +0000 (15:07 -0400)
commit9ef5c047b5834d13e225d6d1a6a1c917b747a89f
tree2c6c6c44cf7d5b655dc116e97cf7ad64348e2842tree | snapshot
parent55c4342a52be40f7e5ee9f5748c90b2afed45abfcommit | diff
[PATCH 01/24] auth: Don't disconnect auth client when invalid base64 SASL input is received

The base64 input comes from untrusted client. It shouldn't cause the auth
client to disconnect, which causes other concurrent logins to be aborted.

Broken by 1486c30e191ff079bfa78e7950173bb33d8073d9

Gbp-Pq: Name CVE-2025-59028.patch
src/auth/auth-request-handler.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.