Dovecot has released version 1.2.17 [1] and 2.0.13 [2] to address a potential crash, and possibly mailbox corruption, when dovecot parsed header names that contained NUL characters. This was due to a pointer possibly pointing past allocated memory. An upstream patch [3] is available. [1] http://dovecot.org/pipermail/dovecot/2011-May/059086.html [2] http://dovecot.org/pipermail/dovecot/2011-May/059085.html [3] http://hg.dovecot.org/dovecot-1.1/rev/3698dfe0f21c
dovecot 1.2.17 for Fedora 13 has been just submitted for updates-testing, 2.0.13 versions for Fedora 14+ are already in updatest-testing repository. https://admin.fedoraproject.org/updates/dovecot-1.2.17-1.fc13 https://admin.fedoraproject.org/updates/dovecot-2.0.13-1.fc14 https://admin.fedoraproject.org/updates/dovecot-2.0.13-1.fc15
Created dovecot tracking bugs for this issue Affects: fedora-all [bug 709108]
This issue has been addressed in following products: Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Via RHSA-2011:1187 https://rhn.redhat.com/errata/RHSA-2011-1187.html