dgit.raspbian.org Git - dovecot.git/commit

author	Timo Sirainen <timo.sirainen@open-xchange.com>
	Mon, 2 Mar 2026 12:40:57 +0000 (14:40 +0200)
committer	Noah Meyerhans <noahm@debian.org>
	Tue, 31 Mar 2026 19:07:17 +0000 (15:07 -0400)
commit	c38e9af194c3ab98963b08032ee0033a53990072
tree	6b62cd3ad77de1b122ae5e37d254e8e849e27ea3	tree \| snapshot
parent	ad5eb4baf80b54162ed9d64b930c8127d6490412	commit \| diff

[PATCH 2/2] managesieve-login: Verify AUTHENTICATE initial response size isn't too large

This prevents DoSing the managesieve-login by sending an excessively large
initial response size, which causes a huge memory allocation.

Gbp-Pq: Name CVE-2026-27858.patch

pigeonhole/src/managesieve-login/client-authenticate.c

diff | blob | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom