• Please be aware: Kaspersky Anti-Virus has been deprecated
    With the upgrade to Plesk Obsidian 18.0.64, "Kaspersky Anti-Virus for Servers" will be automatically removed from the servers it is installed on. We recommend that you migrate to Sophos Anti-Virus for Servers.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Dovecot CVE-2020-24386

B

B_P

Regular Pleskian
Username: B_P

TITLE

Dovecot CVE-2020-24386

PRODUCT, VERSION, OPERATING SYSTEM, ARCHITECTURE

Ubuntu 16.04.7
Plesk 18.0.32

PROBLEM DESCRIPTION

According to Ubuntu (CVE-2020-24386 | Ubuntu) CVE-2020-24386 affects dovecot versions 2.2.26-2.3.11.3.

On Plesk 18.0.32, it seems that 2.3.10.1-v.ubuntu.16.04+p18.0.32.2 is the most recent one which seems to be affected. So a short-notice security update is required.

@IgorG

STEPS TO REPRODUCE

Install & update 18.0.32

ACTUAL RESULT

An affected Dovecot version is installed

EXPECTED RESULT

A fixed Dovecot version is installed.

ANY ADDITIONAL INFORMATION



YOUR EXPECTATIONS FROM PLESK SERVICE TEAM

Help with sorting out
 
You've probably read the article by Heise? Do you realize that both bugs reported do not at the least affect normal operations, but are both special cases that will normally not occur on Plesk installations?
 
You must log in or register to reply here.

Similar threads

learning_curve
Resolved Plesk updates when running Ubuntu 24.04.1 LTS - Possible Installer Plesk bug
Replies
7
Views
461
learning_curve
learning_curve
M
Resolved Clicking on "Use Built-in Monitoring" does not work
Replies
7
Views
2K
Mato
M
T
ISSUE - Nginx config generation failure and http2 directive implementation failure
Replies
14
Views
2K
Bitpalast
Bitpalast
M
Resolved Ubuntu ARM64: The antivirus settings tab of a mail address shows a list of antivirus extensions, of which one isn't available on ARM64.
Replies
3
Views
1K
Peter Debik
P
carini
User with hosting plan with permission to create remote backup only ends up with creating a remote copy of backup AND a local copy of backup, clogging
Replies
3
Views
889
Peter Debik
P
Back
Top