• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Dovecot CVE-2020-24386

B

B_P

Regular Pleskian
Username: B_P

TITLE

Dovecot CVE-2020-24386

PRODUCT, VERSION, OPERATING SYSTEM, ARCHITECTURE

Ubuntu 16.04.7
Plesk 18.0.32

PROBLEM DESCRIPTION

According to Ubuntu (CVE-2020-24386 | Ubuntu) CVE-2020-24386 affects dovecot versions 2.2.26-2.3.11.3.

On Plesk 18.0.32, it seems that 2.3.10.1-v.ubuntu.16.04+p18.0.32.2 is the most recent one which seems to be affected. So a short-notice security update is required.

@IgorG

STEPS TO REPRODUCE

Install & update 18.0.32

ACTUAL RESULT

An affected Dovecot version is installed

EXPECTED RESULT

A fixed Dovecot version is installed.

ANY ADDITIONAL INFORMATION



YOUR EXPECTATIONS FROM PLESK SERVICE TEAM

Help with sorting out
 
You've probably read the article by Heise? Do you realize that both bugs reported do not at the least affect normal operations, but are both special cases that will normally not occur on Plesk installations?
 
You must log in or register to reply here.

Similar threads

M
Resolved Ubuntu ARM64: The antivirus settings tab of a mail address shows a list of antivirus extensions, of which one isn't available on ARM64.
Replies
3
Views
698
Peter Debik
P
carini
User with hosting plan with permission to create remote backup only ends up with creating a remote copy of backup AND a local copy of backup, clogging
Replies
3
Views
481
Peter Debik
P
Giu
Resolved WP Toolkit Delete Backup API Request not working
Replies
7
Views
648
Giu
Giu
T
Resolved Spamassassin issue - not compiled or not compiled properly
Replies
18
Views
770
Hangover2
Hangover2
A
Resolved Full server scheduled backup shows "Backup to Cloud Pro" message
Replies
17
Views
3K
Peter Debik
P
Back
Top